HMAC_Init, keylen arg check

2017-11-22 07:01:56 +09:00
parent f38a321e64
commit 937c759998
1 changed files with 4 additions and 1 deletions
--- a/src/ssl.c
+++ b/src/ssl.c
@ -24759,7 +24759,10 @@ int wolfSSL_HMAC_Init(WOLFSSL_HMAC_CTX* ctx, const void* key, int keylen,
        WOLFSSL_MSG("no ctx on init");
        return WOLFSSL_FAILURE;
    }
-
+    if (key && (keylen > HMAC_BLOCK_SIZE)) {
        WOLFSSL_MSG("invalid keylen");
        return SSL_FAILURE;
    }
    if (type) {
        WOLFSSL_MSG("init has type");