• M
    Sanity check EVP_CTRL_AEAD_TLS_AAD · c8269881
    Matt Caswell 提交于
    The various implementations of EVP_CTRL_AEAD_TLS_AAD expect a buffer of at
    least 13 bytes long. Add sanity checks to ensure that the length is at
    least that. Also add a new constant (EVP_AEAD_TLS1_AAD_LEN) to evp.h to
    represent this length. Thanks to Kevin Wojtysiak (Int3 Solutions) and
    Paramjot Oberoi (Int3 Solutions) for reporting this issue.
    Reviewed-by: NAndy Polyakov <appro@openssl.org>
    c8269881
e_aes.c 84.3 KB