kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
1,338 Commits 12 Branches 0 Tags 38 MiB
C 43.1%
C++ 23.5%
Go 13.6%
Raku 10.8%
Perl 4%
Other 4.9%
bc1fde3206
Go to file
David Benjamin bc1fde3206 Check max_out against in_len, not plaintext_len in RC4/MD5 AEAD. 
Like the non-stitched variant, this "AEAD" uses the output buffer as
scratch space for the MAC. Thus it should require that max_out_len is
large enough to fit that, even though it will never return that large of
input.

Change-Id: I5b30b0756408c2e433448f540e7c65251336d2f8
Reviewed-on: https://boringssl-review.googlesource.com/4704
Reviewed-by: Adam Langley <agl@google.com>
2015-05-11 19:15:38 +00:00
crypto Check max_out against in_len, not plaintext_len in RC4/MD5 AEAD. 2015-05-11 19:15:38 +00:00
decrepit Eliminate unnecessary includes from low-level crypto modules. 2015-04-13 20:49:18 +00:00
doc Inital import. 2014-06-20 13:17:32 -07:00
include/openssl Always enable SSL_MODE_RELEASE_BUFFERS. 2015-05-11 18:39:09 +00:00
ssl Remove max parameter to ssl3_read_n. 2015-05-11 18:41:41 +00:00
tool tool: we don't need -lrt. 2015-05-05 18:28:26 +00:00
util Add support for CMAC (RFC 4493). 2015-05-07 21:13:41 +00:00
.clang-format Inital import. 2014-06-20 13:17:32 -07:00
.gitignore Add generated documentation to .gitignore 2015-01-26 18:37:55 +00:00
BUILDING Add support for building with the Android NDK. 2015-05-05 00:31:46 +00:00
CMakeLists.txt Add support for building with the Android NDK. 2015-05-05 00:31:46 +00:00
codereview.settings Add a codereview.settings file. 2014-11-18 22:21:33 +00:00
STYLE Require that FOO_free functions do nothing on NULL. 2015-05-04 22:58:13 +00:00