wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-08-01 03:34:39 +02:00
Code Issues Packages Projects Releases Wiki Activity

Enforce WOLFSSL_MAX_PATH_LEN for ASN original as well.

Browse Source
This commit is contained in:
Kareem
2025-07-11 11:53:33 -07:00
parent bfacbf9764
commit 9fa1d2e75f
1 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
wolfcrypt/src/asn.c
View File

@@ -20614,7 +20614,12 @@ static int DecodeBasicCaConstraint(const byte* input, int sz, DecodedCert* cert)
ret = GetInteger16Bit(input, &idx, (word32)sz);
if (ret < 0)
return ret;
cert->pathLength = (byte)ret;
else if (ret > WOLFSSL_MAX_PATH_LEN) {
WOLFSSL_ERROR_VERBOSE(ASN_PATHLEN_SIZE_E);
return ASN_PATHLEN_SIZE_E;
}
cert->pathLength = (word16)ret;
cert->pathLengthSet = 1;
return 0;