lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-08-05 19:35:48 +03:00
Code Activity

Fix a buffer overflow in hmac_setup_internal

Browse Source 
At the end of `psa_hmac_setup_internal()`, the ipad is cleared.
However, the size that was given to clear was `key_len` which is larger
than the size of `ipad`.
This commit is contained in:
Ron Eldor
2019-09-10 15:21:37 +03:00
parent 92348d1c49
commit 296eca6e76
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
library/psa_crypto.c
View File

@@ -2735,7 +2735,7 @@ static psa_status_t psa_hmac_setup_internal( psa_hmac_internal_data *hmac,
status = psa_hash_update( &hmac->hash_ctx, ipad, block_size ); status = psa_hash_update( &hmac->hash_ctx, ipad, block_size );
cleanup: cleanup:
mbedtls_platform_zeroize( ipad, key_length ); mbedtls_platform_zeroize( ipad, sizeof(ipad) );
return( status ); return( status );
} }