feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #2426 from JacobBarthelmeh/Fuzzer

Browse Source 
sanity check on buffer size before reading short
This commit is contained in:
toddouska
2019-08-23 10:17:31 -07:00
committed by GitHub
parent 0e6bb4717e 65aeb71d6c
commit 54fb08d6df
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/tls.c
View File

@ -8024,6 +8024,8 @@ static int TLSX_PreSharedKey_Parse(WOLFSSL* ssl, byte* input, word16 length,
list = (PreSharedKey*)extension->data; list = (PreSharedKey*)extension->data;
/* Length of binders. */ /* Length of binders. */
if (idx + OPAQUE16_LEN > length)
return BUFFER_E;
ato16(input + idx, &len); ato16(input + idx, &len);
idx += OPAQUE16_LEN; idx += OPAQUE16_LEN;
if (len < MIN_PSK_BINDERS_LEN || length - idx < len) if (len < MIN_PSK_BINDERS_LEN || length - idx < len)