#118

2021-10-18 14:38:47 +02:00 · 2021-10-18 14:38:47 +02:00 · 1d5f4a6664
commit 1d5f4a6664
parent 81c3f4b925
1 changed files with 6 additions and 0 deletions
--- a/src/keys.c
+++ b/src/keys.c
@ -3119,6 +3119,12 @@ int SetKeysSide(WOLFSSL* ssl, enum encrypt_side side)
    if (copy) {
        int clientCopy = 0;

+        /* Sanity check that keys == ssl->secure_renegotiation->tmp_keys.
+         * Otherwise the memcpy calls would copy overlapping memory
+         * and cause UB. Fail early. */
+        if (keys == &ssl->keys)
+            return BAD_FUNC_ARG;
+
        if (ssl->options.side == WOLFSSL_CLIENT_END && wc_encrypt)
            clientCopy = 1;
        else if (ssl->options.side == WOLFSSL_SERVER_END && wc_decrypt)