From 50647ccdb1e5090e69ba1c9deedf70c1392c779a Mon Sep 17 00:00:00 2001
From: Eric Blankenhorn <eric@wolfssl.com>
Date: Tue, 4 Aug 2020 15:02:44 -0500
Subject: [PATCH] Sanity check key sizes

---
 wolfcrypt/src/srp.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/wolfcrypt/src/srp.c b/wolfcrypt/src/srp.c
index cf5eff19a..5d5b5ee46 100644
--- a/wolfcrypt/src/srp.c
+++ b/wolfcrypt/src/srp.c
@@ -615,6 +615,9 @@ int wc_SrpComputeKey(Srp* srp, byte* clientPubKey, word32 clientPubKeySz,
     digestSz = SrpHashSize(srp->type);
     secretSz = mp_unsigned_bin_size(&srp->N);
 
+    if ((secretSz < clientPubKeySz) || (secretSz < serverPubKeySz))
+        return BAD_FUNC_ARG;
+
     if ((secret = (byte*)XMALLOC(secretSz, srp->heap, DYNAMIC_TYPE_SRP)) ==NULL)
         return MEMORY_E;