Use LONG_MAX as the limit for ciphers with long based APIs. - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2022-09-15 07:04:19 +0000
committer	jsing <>	2022-09-15 07:04:19 +0000
commit	eb8c72ebbdf63c499f36d2304eaeea78cc947403 (patch)
tree	1c7afa8ea8df0921bd154e4d6c5a2402edf4beb7 /src/lib/libssl/ssl_ciphers.c
parent	1d6e66f8d2d6bdd1973ab33ca3f3b7f7d3a85498 (diff)
download	openbsd-eb8c72ebbdf63c499f36d2304eaeea78cc947403.tar.gz openbsd-eb8c72ebbdf63c499f36d2304eaeea78cc947403.tar.bz2 openbsd-eb8c72ebbdf63c499f36d2304eaeea78cc947403.zip

Use LONG_MAX as the limit for ciphers with long based APIs.

These ciphers have long based APIs, while EVP has a size_t based API. The intent of these loops is to handle sizes that are bigger than LONG_MAX. Rather than using the rather crazy EVP_MAXCHUNK construct, use LONG_MAX rounded down to a large block size, ensuring that it is a block size multiple. Revert the recently added overflow checks now that this is handled more appropriately. ok tb@

Diffstat (limited to 'src/lib/libssl/ssl_ciphers.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: