yuzu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-01-26 01:31:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

Included tests for the overflow

Browse source 
Conflicts:
	library/rsa.c
This commit is contained in:
Janos Follath 2016-02-08 14:52:29 +00:00 committed by Simon Butcher
parent 21ca00243c
commit 742783fe85
1 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
library/rsa.c
View file

@ -525,7 +525,8 @@ int rsa_rsaes_oaep_encrypt( rsa_context *ctx,
olen = ctx->len; olen = ctx->len;
hlen = md_get_size( md_info ); hlen = md_get_size( md_info );
if( olen < ilen + 2 * hlen + 2 ) // first comparison checks for overflow
if( ilen + 2 * hlen + 2 < ilen || olen < ilen + 2 * hlen + 2 )
return( POLARSSL_ERR_RSA_BAD_INPUT_DATA ); return( POLARSSL_ERR_RSA_BAD_INPUT_DATA );
memset( output, 0, olen ); memset( output, 0, olen );
@ -592,7 +593,8 @@ int rsa_rsaes_pkcs1_v15_encrypt( rsa_context *ctx,
olen = ctx->len; olen = ctx->len;
if( olen < ilen + 11 ) // first comparison checks for overflow
if( ilen + 11 < ilen || olen < ilen + 11 )
return( POLARSSL_ERR_RSA_BAD_INPUT_DATA ); return( POLARSSL_ERR_RSA_BAD_INPUT_DATA );
nb_pad = olen - 3 - ilen; nb_pad = olen - 3 - ilen;