wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-08-02 12:14:38 +02:00
Code Issues Packages Projects Releases Wiki Activity

sanity check before reading word16 from buffer

Browse Source
This commit is contained in:
Jacob Barthelmeh
2018-06-20 16:48:40 -06:00
parent 2f43d5eece
commit bf63003237
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/tls13.c
View File

@@ -2866,6 +2866,8 @@ int DoTls13ServerHello(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
#endif #endif
{ {
/* Get extension length and length check. */ /* Get extension length and length check. */
if ((i - begin) + OPAQUE16_LEN > helloSz)
return BUFFER_ERROR;
ato16(&input[i], &totalExtSz); ato16(&input[i], &totalExtSz);
i += OPAQUE16_LEN; i += OPAQUE16_LEN;
if ((i - begin) + totalExtSz > helloSz) if ((i - begin) + totalExtSz > helloSz)