Home Explore Help
Sign In
c
/
libtom.libtomcrypt
mirror of https://github.com/libtom/libtomcrypt.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge pull request #327 from libtom/fix/ccm_segfault

Fix ccm_memory() cleaning user-supplied key
Steffen Jaeckel 8 years ago
parent
7c4c61d7ef 2a5f5cff16
commit
85ac227862
2 changed files with 14 additions and 1 deletions
Split View Show Diff Stats
  1. 3 1
      src/encauth/ccm/ccm_memory.c
  2. 11 0
      src/encauth/ccm/ccm_test.c

+ 3 - 1
src/encauth/ccm/ccm_memory.c
View File 

@@ -333,6 +333,9 @@ int ccm_memory(int cipher,
 
 
    if (skey != uskey) {
 
       cipher_descriptor[cipher].done(skey);
 
+#ifdef LTC_CLEAN_STACK
 
+      zeromem(skey,   sizeof(*skey));
 
+#endif
 
    }
 
 
    if (direction == CCM_ENCRYPT) {
 
@@ -380,7 +383,6 @@ int ccm_memory(int cipher,
 
    fastMask = 0;
 
 #endif
 
    mask = 0;
 
-   zeromem(skey,   sizeof(*skey));
 
    zeromem(PAD,    sizeof(PAD));
 
    zeromem(CTRPAD, sizeof(CTRPAD));
 
    if (pt_work != NULL) {

+ 11 - 0
src/encauth/ccm/ccm_test.c
View File 

@@ -145,6 +145,17 @@ int ccm_test(void)
 
                                tag, &taglen, 0)) != CRYPT_OK) {
 
             return err;
 
          }
 
+         /* run a second time to make sure skey is not touched */
 
+         if ((err = ccm_memory(idx,
 
+                               tests[x].key, 16,
 
+                               &skey,
 
+                               tests[x].nonce, tests[x].noncelen,
 
+                               tests[x].header, tests[x].headerlen,
 
+                               (unsigned char*)tests[x].pt, tests[x].ptlen,
 
+                               buf,
 
+                               tag, &taglen, 0)) != CRYPT_OK) {
 
+            return err;
 
+         }
 
       } else {
 
          if ((err = ccm_init(&ccm, idx, tests[x].key, 16, tests[x].ptlen, tests[x].taglen, tests[x].headerlen)) != CRYPT_OK) {
 
             return err;