Commit bd4acbc7 authored by Jonas Maebe's avatar Jonas Maebe Committed by Kurt Roeckx
Browse files

BIO_new_dgram_sctp, dgram_sctp_read: zero entire authchunks 



Signed-off-by: default avatarKurt Roeckx <kurt@openssl.org>
Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
parent 89572788

crypto/bio/bss_dgram.c

+2 −2
Original line number Diff line number Diff line
@@ -951,7 +951,7 @@ BIO *BIO_new_dgram_sctp(int fd, int close_flag) 
	 * already, otherwise the connected socket won't use it. */

	sockopt_len = (socklen_t)(sizeof(sctp_assoc_t) + 256 * sizeof(uint8_t));

	authchunks = OPENSSL_malloc(sockopt_len);

	memset(authchunks, 0, sizeof(sockopt_len));

	memset(authchunks, 0, sockopt_len);

	ret = getsockopt(fd, IPPROTO_SCTP, SCTP_LOCAL_AUTH_CHUNKS, authchunks, &sockopt_len);

	OPENSSL_assert(ret >= 0);
@@ -1241,7 +1241,7 @@ static int dgram_sctp_read(BIO *b, char *out, int outl) 


			optlen = (socklen_t)(sizeof(sctp_assoc_t) + 256 * sizeof(uint8_t));

			authchunks = OPENSSL_malloc(optlen);

			memset(authchunks, 0, sizeof(optlen));

			memset(authchunks, 0, optlen);

			ii = getsockopt(b->num, IPPROTO_SCTP, SCTP_PEER_AUTH_CHUNKS, authchunks, &optlen);

			OPENSSL_assert(ii >= 0);