Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / libsrtp2 / da34bb7139e1ab7437e90afa039bde26d1e8d3cd
commitda34bb7139e1ab7437e90afa039bde26d1e8d3cd[log] [tgz]
authorPascal Bühler <pabuhler@cisco.com>Mon Dec 14 10:55:52 2015 +0100
committerPascal Bühler <pabuhler@cisco.com>Mon Dec 14 10:55:52 2015 +0100
treed9a71208d88974b375885e8b928a45084a2cc6c4
parent857812594206f394f508906ad1ecfa09fe6d48c1 [diff]
Prevent stack-buffer-overflow with gcc -fsanitize=address

The value passed to srtp_aes_gcm_openssl_set_aad is not guarantied
to be >= c->tag_len. Since the call to EVP_CIPHER_CTX_ctrl is a
dummy call pass it a dummy tag that is large enough.
1 file changed
tree: d9a71208d88974b375885e8b928a45084a2cc6c4
  1. crypto/
  2. doc/
  3. include/
  4. srtp/
  5. test/
  6. .gitignore
  7. .travis.yml
  8. CHANGES
  9. config.guess
  10. config.h_win32vc7
  11. config.hw
  12. config.sub
  13. config_in.h
  14. configure
  15. configure.in
  16. install-sh
  17. install-win.bat
  18. libsrtp2.pc.in
  19. LICENSE
  20. Makefile.in
  21. README
  22. srtp.def
  23. srtp.sln
  24. srtp.vcproj
  25. srtp7.sln
  26. srtp7.vcproj
  27. timing
  28. TODO
  29. undos.sh
  30. update.sh
  31. VERSION