wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-31 19:24:42 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #5757 from SparkiDev/enc_err_forcezero_fix

Browse Source 
ForceZero fix: encryption fail and not EtM
This commit is contained in:
JacobBarthelmeh
2022-10-31 11:43:48 -06:00
committed by GitHub
parent 0ea0b887a5 4efba8f437
commit 502a395723
1 changed files with 10 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/internal.c
View File

@@ -20813,9 +20813,17 @@ int BuildMessage(WOLFSSL* ssl, byte* output, int outSz, const byte* input,
#endif #endif
{ {
/* Zeroize plaintext. */ /* Zeroize plaintext. */
#if defined(HAVE_ENCRYPT_THEN_MAC) && !defined(WOLFSSL_AEAD_ONLY)
if (ssl->options.startedETMWrite) {
ForceZero(output + args->headerSz, ForceZero(output + args->headerSz,
(word16)(args->size - args->digestSz)); (word16)(args->size - args->digestSz));
} }
else
#endif
{
ForceZero(output + args->headerSz, (word16)args->size);
}
}
goto exit_buildmsg; goto exit_buildmsg;
} }
ssl->options.buildMsgState = BUILD_MSG_ENCRYPTED_VERIFY_MAC; ssl->options.buildMsgState = BUILD_MSG_ENCRYPTED_VERIFY_MAC;