Add a return value check to tls13_buffer_extend(). - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2020-03-10 17:11:25 +0000
committer	jsing <>	2020-03-10 17:11:25 +0000
commit	4933192b832b483046f15d271150bd7c592ba9fc (patch)
tree	c720eff828444a92c90ec50ed52364e1de455f30 /src/lib/libssl/d1_pkt.c
parent	2fc4169a1040fb41912043d6a402741eceda793f (diff)
download	openbsd-4933192b832b483046f15d271150bd7c592ba9fc.tar.gz openbsd-4933192b832b483046f15d271150bd7c592ba9fc.tar.bz2 openbsd-4933192b832b483046f15d271150bd7c592ba9fc.zip

Add a return value check to tls13_buffer_extend().

In the unlikely event that the return value from the read callback is larger than the number of bytes we asked for, we can end up incrementing buf->len beyond capacity. Check the return value from the read callback to prevent this. ok inoguchi@ tb@

Diffstat (limited to 'src/lib/libssl/d1_pkt.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: