- Inceased maximum size of ASN1 length reads to 32-bits

This commit is contained in:
Paul Bakker 2011-10-12 09:52:22 +00:00
parent b892b1326c
commit c4909d95f1
2 changed files with 17 additions and 0 deletions

View file

@ -13,6 +13,7 @@ Changes
* Documentation for AES and Camellia in modes CTR and CFB128 clarified. * Documentation for AES and Camellia in modes CTR and CFB128 clarified.
* Fixed rsa_encrypt and rsa_decrypt examples to use public key for * Fixed rsa_encrypt and rsa_decrypt examples to use public key for
encryption and private key for decryption. (Closes ticket #34) encryption and private key for decryption. (Closes ticket #34)
* Inceased maximum size of ASN1 length reads to 32-bits.
Bugfix Bugfix
* Fixed faulty HMAC-MD2 implementation. Found by dibac. (Closes * Fixed faulty HMAC-MD2 implementation. Found by dibac. (Closes

View file

@ -89,6 +89,22 @@ static int asn1_get_len( unsigned char **p,
(*p) += 3; (*p) += 3;
break; break;
case 3:
if( ( end - *p ) < 4 )
return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
*len = ( (*p)[1] << 16 ) | ( (*p)[2] << 8 ) | (*p)[3];
(*p) += 4;
break;
case 4:
if( ( end - *p ) < 5 )
return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
*len = ( (*p)[1] << 24 ) | ( (*p)[2] << 16 ) | ( (*p)[3] << 8 ) | (*p)[4];
(*p) += 5;
break;
default: default:
return( POLARSSL_ERR_ASN1_INVALID_LENGTH ); return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
} }