]> git.ipfire.org Git - thirdparty/ipxe.git/commit
projects / thirdparty / ipxe.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 634a860) | patch
[tls] Treat invalid block padding as zero length padding
authorMichael Brown <mcb30@ipxe.org>
Tue, 8 Nov 2022 15:10:25 +0000 (15:10 +0000)
committerMichael Brown <mcb30@ipxe.org>
Tue, 8 Nov 2022 15:14:06 +0000 (15:14 +0000)
commit186306d6199096b7a7c4b4574d4be8cdb8426729
tree6cf369ae4a95f936ebdef95284caa64c7f0db025tree
parent634a86093af9a6d134be8662f25616f4edfec683commit | diff
[tls] Treat invalid block padding as zero length padding

Harden against padding oracle attacks by treating invalid block
padding as zero length padding, thereby deferring the failure until
after computing the (incorrect) MAC.

Signed-off-by: Michael Brown <mcb30@ipxe.org>
src/net/tls.c diff | blob | blame | history
Mirror of https://github.com/ipxe/ipxe.git