Skip to content
Commit 2bd5d70c authored by Matt Caswell's avatar Matt Caswell
Browse files

Ensure EVP_EncodeUpdate handles an output length that is too long



With the EVP_EncodeUpdate function it is the caller's responsibility to
determine how big the output buffer should be. The function writes the
amount actually used to |*outl|. However this could go negative with a
sufficiently large value for |inl|. We add a check for this error
condition.

Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
parent ee1e3cac
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment