[openssl-dev] [openssl.org #4628] EVP_f_cipher regression due to overlapping regions check
Matt Caswell via RT
rt at openssl.org
Wed Aug 24 09:39:13 UTC 2016
On Mon Aug 22 15:05:17 2016, davidben at google.com wrote:
> I may not have time to fully digest the change before the release date, but
> I'm not sure this snippet quite works:
>
> if (ctx->read_start == ctx->read_end) { /* time to read more data */
> ctx->read_end = ctx->read_start = &(ctx->buf[BUF_OFFSET]);
> ctx->read_end += BIO_read(next, ctx->read_start, ENC_BLOCK_SIZE);
> }
> i = ctx->read_end - ctx->read_start;
>
> if (i <= 0) {
Fixed in 9e421962e1cd. Closing.
Matt
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4628
Please log in as guest with password guest if prompted
More information about the openssl-dev
mailing list