Added len_len error checking for internal cbb_buffer_add_u().

ok jsing@
author: doug <doug@openbsd.org> 2015-04-29 01:39:32 +0000
committer: doug <doug@openbsd.org> 2015-04-29 01:39:32 +0000
commit: c2c0b1519184b9c58299f480da06dff68067eb9d (patch)
tree: 2921db6177ea92b750c30ddcd2cb89ae8cae258c /lib/libssl/src
parent: Call CBS_mem_equal() rather than reimplementing it. (diff)
download: wireguard-openbsd-c2c0b1519184b9c58299f480da06dff68067eb9d.tar.xz
wireguard-openbsd-c2c0b1519184b9c58299f480da06dff68067eb9d.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/lib/libssl/src/ssl/bs_cbb.c b/lib/libssl/src/ssl/bs_cbb.c
index 5546fac97f0..7f0e474dede 100644
--- a/lib/libssl/src/ssl/bs_cbb.c
+++ b/lib/libssl/src/ssl/bs_cbb.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: bs_cbb.c,v 1.5 2015/02/07 06:10:32 doug Exp $	*/
+/*	$OpenBSD: bs_cbb.c,v 1.6 2015/04/29 01:39:32 doug Exp $	*/
 /*
  * Copyright (c) 2014, Google Inc.
  *
@@ -127,6 +127,9 @@ cbb_buffer_add_u(struct cbb_buffer_st *base, uint32_t v, size_t len_len)
 	if (len_len == 0)
 		return 1;
 
+	if (len_len > 4)
+		return 0;
+
 	if (!cbb_buffer_add(base, &buf, len_len))
 		return 0;
author	doug <doug@openbsd.org>	2015-04-29 01:39:32 +0000
committer	doug <doug@openbsd.org>	2015-04-29 01:39:32 +0000
commit	c2c0b1519184b9c58299f480da06dff68067eb9d (patch)
tree	2921db6177ea92b750c30ddcd2cb89ae8cae258c /lib/libssl/src
parent	Call CBS_mem_equal() rather than reimplementing it. (diff)
download	wireguard-openbsd-c2c0b1519184b9c58299f480da06dff68067eb9d.tar.xz wireguard-openbsd-c2c0b1519184b9c58299f480da06dff68067eb9d.zip