lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-10-28 23:14:56 +03:00
Code Activity

Merge pull request #259 from k-stachowiak/bounds-check-asn1-len

Browse Source 
Check `len` against buffers size upper bound in PSA tests
This commit is contained in:
Gilles Peskine
2019-10-29 17:47:47 +01:00
committed by GitHub
parent 0eaf49c9be 9b88efc378
commit ccde952df0
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
tests/suites/test_suite_psa_crypto.function
View File

@@ -736,6 +736,11 @@ int asn1_skip_integer( unsigned char **p, const unsigned char *end,
TEST_EQUAL( mbedtls_asn1_get_tag( p, end, &len, TEST_EQUAL( mbedtls_asn1_get_tag( p, end, &len,
MBEDTLS_ASN1_INTEGER ), MBEDTLS_ASN1_INTEGER ),
0 ); 0 );
/* Check if the retrieved length doesn't extend the actual buffer's size.
* It is assumed here, that end >= p, which validates casting to size_t. */
TEST_ASSERT( len <= (size_t)( end - *p) );
/* Tolerate a slight departure from DER encoding: /* Tolerate a slight departure from DER encoding:
* - 0 may be represented by an empty string or a 1-byte string. * - 0 may be represented by an empty string or a 1-byte string.
* - The sign bit may be used as a value bit. */ * - The sign bit may be used as a value bit. */