Sanity check EVP_EncodeUpdate buffer len

There was already a sanity check to ensure the passed buffer length is not zero. Extend this to ensure that it also not negative. Thanks to Kevin Wojtysiak (Int3 Solutions) and Paramjot Oberoi (Int3 Solutions) for reporting this issue. Reviewed-by: N Andy Polyakov <appro@openssl.org>

Sanity check EVP_EncodeUpdate buffer len
There was already a sanity check to ensure the passed buffer length is not zero. Extend this to ensure that it also not negative. Thanks to Kevin Wojtysiak (Int3 Solutions) and Paramjot Oberoi (Int3 Solutions) for reporting this issue. Reviewed-by: N Andy Polyakov <appro@openssl.org>
b86d7dca · Matt Caswell · c8269881 · b86d7dca
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

crypto/evp/encode.c crypto/evp/encode.c +1 -1

未找到文件。
--- a/crypto/evp/encode.c
+++ b/crypto/evp/encode.c
@@ -137,7 +137,7 @@ void EVP_EncodeUpdate(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl,
    unsigned int total = 0;

    *outl = 0;
-    if (inl == 0)
+    if (inl <= 0)
        return;
    OPENSSL_assert(ctx->length <= (int)sizeof(ctx->enc_data));
    if ((ctx->num + inl) < ctx->length) {