Skip to content
  1. Sep 14, 2016
    • Matt Caswell's avatar
      Add some sanity checks around usage of t_fromb64() · 73f0df83
      Matt Caswell authored
      
      
      The internal SRP function t_fromb64() converts from base64 to binary. It
      does not validate that the size of the destination is sufficiently large -
      that is up to the callers. In some places there was such a check, but not
      in others.
      
      Add an argument to t_fromb64() to provide the size of the destination
      buffer and validate that we don't write too much data. Also add some sanity
      checks to the callers where appropriate.
      
      With thanks to Shi Lei for reporting this issue.
      
      Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
      73f0df83
  2. Sep 13, 2016
  3. Sep 12, 2016
  4. Sep 11, 2016
  5. Sep 09, 2016
  6. Sep 08, 2016