add space for null terminator and check on header pointer

2025-07-29 18:27:29 +02:00 · 2020-03-16 15:14:29 -07:00
parent 74781a3d45
commit 9fc8c8e0b6
1 changed files with 4 additions and 3 deletions
--- a/wolfcrypt/src/asn.c
+++ b/wolfcrypt/src/asn.c
@ -10434,8 +10434,8 @@ int PemToDer(const unsigned char* buff, long longSz, int type,
    #endif
 #endif
 #ifdef OPENSSL_EXTRA
-    char        beginBuf[PEM_LINE_LEN];
-    char        endBuf[PEM_LINE_LEN];
+    char        beginBuf[PEM_LINE_LEN + 1]; /* add 1 for null terminator */
+    char        endBuf[PEM_LINE_LEN + 1];   /* add 1 for null terminator */
 #endif

    WOLFSSL_ENTER("PemToDer");
@ -10506,7 +10506,8 @@ int PemToDer(const unsigned char* buff, long longSz, int type,
                            XSTR_SIZEOF(BEGIN_PRIV_KEY_PREFIX)) != 0) {
                headerEnd--;
            }
-            if (XSTRNCMP(headerEnd, BEGIN_PRIV_KEY_PREFIX,
+            if (headerEnd <= (char*)buff ||
+                    XSTRNCMP(headerEnd, BEGIN_PRIV_KEY_PREFIX,
                    XSTR_SIZEOF(BEGIN_PRIV_KEY_PREFIX)) != 0 ||
                    beginEnd - headerEnd > PEM_LINE_LEN) {
                WOLFSSL_MSG("Couldn't find PEM header");