Enforce a strict output length check in CRYPTO_ccm128_tag (514c9da4) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Commit 514c9da4 authored Apr 22, 2019 by

Guido Vranken Committed by Matt Caswell Apr 25, 2019

Enforce a strict output length check in CRYPTO_ccm128_tag



Return error if the output tag buffer size doesn't match
the tag size exactly. This prevents the caller from
using that portion of the tag buffer that remains
uninitialized after an otherwise succesfull call to
CRYPTO_ccm128_tag.

Bug found by OSS-Fuzz.

Fix suggested by Kurt Roeckx.

Signed-off-by: Guido Vranken <guidovranken@gmail.com>

Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/8810)

parent 87930507

Hide whitespace changes

Inline Side-by-side

Please register or to comment