Merge pull request #673 from cconlon/fortify

address fortify critical issues
2016-12-19 13:42:11 -08:00 · 2016-12-19 13:42:11 -08:00 · dca57bf2f0
commit dca57bf2f0
parent 168203ff9d 060ff5e5ef
2 changed files with 11 additions and 1 deletions
--- a/src/internal.c
+++ b/src/internal.c
@ -10537,7 +10537,9 @@ int SendCertificate(WOLFSSL* ssl)

            sendSz = BuildMessage(ssl, output, sendSz, input, inputSz,
                                  handshake, 1, 0);
-            XFREE(input, ssl->heap, DYNAMIC_TYPE_TMP_BUFFER);
+
+            if (inputSz > 0)
+                XFREE(input, ssl->heap, DYNAMIC_TYPE_TMP_BUFFER);

            if (sendSz < 0)
                return sendSz;
--- a/wolfcrypt/src/asn.c
+++ b/wolfcrypt/src/asn.c
@ -1963,6 +1963,14 @@ int ToTraditionalEnc(byte* input, word32 sz,const char* password,int passwordSz)
            return ASN_PARSE_E;
        }

+        if (length > MAX_IV_SIZE) {
+#ifdef WOLFSSL_SMALL_STACK
+            XFREE(salt,  NULL, DYNAMIC_TYPE_TMP_BUFFER);
+            XFREE(cbcIv, NULL, DYNAMIC_TYPE_TMP_BUFFER);
+#endif
+            return ASN_PARSE_E;
+        }
+
        XMEMCPY(cbcIv, &input[inOutIdx], length);
        inOutIdx += length;
    }