JehanneOS/jehanne
1
0
Fork 0
Code Issues Pull Requests Projects Releases Activity

libsec: fix #3: out-of-bound access in aesXCBCmac (CID 155914)

Browse Source
This commit is contained in:
Giacomo Tesio
2017-01-17 21:05:59 +01:00
parent 90f3d2ce31
commit 04962f0637
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
sys/src/lib/sec/port/aes.c
View File

@@ -128,6 +128,7 @@ aesXCBCmac(uint8_t *p, int len, AESstate *s)
uint8_t q[AESbsize]; uint8_t q[AESbsize];
assert(s->keybytes == 16); /* more complicated for bigger */ assert(s->keybytes == 16); /* more complicated for bigger */
assert(s->rounds <= sizeof(s->mackey)/sizeof(uint32_t));
memset(s->ivec, 0, AESbsize); /* E[0] is 0+ */ memset(s->ivec, 0, AESbsize); /* E[0] is 0+ */
for(; len > AESbsize; len -= AESbsize){ for(; len > AESbsize; len -= AESbsize){