mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-27 22:03:31 +01:00
Merge remote-tracking branch 'origin/maint-0.2.2'
This commit is contained in:
commit
51f53b590e
5
changes/bug4410
Normal file
5
changes/bug4410
Normal file
@ -0,0 +1,5 @@
|
||||
o Major bugfixes:
|
||||
- Correctly sanity-check that we don't underflow on a memory allocation
|
||||
for introduction point decryption. Bug discovered by Dan Rosenberg.
|
||||
Fixes bug 4410; bugfix on 0.2.1.5-alpha.
|
||||
|
@ -4886,6 +4886,11 @@ rend_decrypt_introduction_points(char **ipos_decrypted,
|
||||
crypto_cipher_env_t *cipher;
|
||||
char *dec;
|
||||
int declen;
|
||||
if (ipos_encrypted_size < CIPHER_IV_LEN + 2) {
|
||||
log_warn(LD_REND, "Size of encrypted introduction points is too "
|
||||
"small.");
|
||||
return -1;
|
||||
}
|
||||
dec = tor_malloc_zero(ipos_encrypted_size - CIPHER_IV_LEN - 1);
|
||||
cipher = crypto_create_init_cipher(descriptor_cookie, 0);
|
||||
declen = crypto_cipher_decrypt_with_iv(cipher, dec,
|
||||
|
Loading…
Reference in New Issue
Block a user