kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add cipher asserts for read/write app data.

Browse Source 
Allow the fuzzers to treat this situation, if they ever discover it,
as a bug.

Change-Id: Ie6f1562e9b185d49463cf1a6db28d28780169b11
Reviewed-on: https://boringssl-review.googlesource.com/14424
Reviewed-by: David Benjamin <davidben@google.com>
This commit is contained in:
Steven Valdez 2017-03-28 16:48:17 -04:00 committed by David Benjamin
parent ccbb165d98
commit a0ba400c33
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ssl/s3_pkt.c
View File

@ -190,6 +190,7 @@ again:
int ssl3_write_app_data(SSL *ssl, const uint8_t *buf, int len) {
assert(ssl_can_write(ssl));
assert(ssl->s3->aead_write_ctx != NULL);
unsigned tot, n, nw;
@ -326,6 +327,7 @@ static int consume_record(SSL *ssl, uint8_t *out, int len, int peek) {
int ssl3_read_app_data(SSL *ssl, int *out_got_handshake, uint8_t *buf, int len,
int peek) {
assert(ssl_can_read(ssl));
assert(ssl->s3->aead_read_ctx != NULL);
*out_got_handshake = 0;
ssl->method->release_current_message(ssl, 0 /* don't free buffer */);