feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

sanity check on buffer size before reading short

Browse Source
This commit is contained in:
Jacob Barthelmeh
2019-08-22 11:36:35 -06:00
parent cf83561b64
commit 65aeb71d6c
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/tls.c
View File

@ -8024,6 +8024,8 @@ static int TLSX_PreSharedKey_Parse(WOLFSSL* ssl, byte* input, word16 length,
list = (PreSharedKey*)extension->data; list = (PreSharedKey*)extension->data;
/* Length of binders. */ /* Length of binders. */
if (idx + OPAQUE16_LEN > length)
return BUFFER_E;
ato16(input + idx, &len); ato16(input + idx, &len);
idx += OPAQUE16_LEN; idx += OPAQUE16_LEN;
if (len < MIN_PSK_BINDERS_LEN || length - idx < len) if (len < MIN_PSK_BINDERS_LEN || length - idx < len)