Fix SSLv3 handling of SHA-384 suites

Fixes memory corruption, introduced in a5bdfcd (Relax some SHA2 ciphersuite's version requirements)
2025-07-29 11:41:15 +03:00 · 2013-12-17 10:17:08 +01:00
parent e1b665e1aa
commit c72ac7c3ef
2 changed files with 4 additions and 2 deletions
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h
@ -471,8 +471,8 @@ struct _ssl_transform

 #if defined(POLARSSL_SSL_PROTO_SSL3)
    /* Needed only for SSL v3.0 secret */
-    unsigned char mac_enc[32];          /*!<  SSL v3.0 secret (enc)   */
-    unsigned char mac_dec[32];          /*!<  SSL v3.0 secret (dec)   */
+    unsigned char mac_enc[48];          /*!<  SSL v3.0 secret (enc)   */
+    unsigned char mac_dec[48];          /*!<  SSL v3.0 secret (dec)   */
 #endif /* POLARSSL_SSL_PROTO_SSL3 */

    md_context_t md_ctx_enc;            /*!<  MAC (encryption)        */