wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Check length of additional input in DRBG generate function.

Browse source
This commit is contained in:
Dr. Stephen Henson 2011-09-12 18:45:05 +00:00
parent de2132de93
commit 361d18a208
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
fips/rand/fips_drbg_lib.c
View file

@ -377,6 +377,12 @@ int FIPS_drbg_generate(DRBG_CTX *dctx, unsigned char *out, size_t outlen,
return 0;
}
if (adinlen > dctx->max_adin)
{
r = FIPS_R_ADDITIONAL_INPUT_TOO_LONG;
goto end;
}
if (dctx->flags & DRBG_CUSTOM_RESEED)
dctx->generate(dctx, NULL, outlen, NULL, 0);
else if (dctx->reseed_counter >= dctx->reseed_interval)