ssl: fix coverity 1451515: out of bounds memory access

author Pauli <ppzgs1@gmail.com>

Wed, 17 Mar 2021 02:00:42 +0000 (12:00 +1000)

committer Pauli <ppzgs1@gmail.com>

Thu, 18 Mar 2021 11:21:06 +0000 (21:21 +1000)
author Pauli <ppzgs1@gmail.com>
Wed, 17 Mar 2021 02:00:42 +0000 (12:00 +1000)
committer Pauli <ppzgs1@gmail.com>
Thu, 18 Mar 2021 11:21:06 +0000 (21:21 +1000)
diff --git a/ssl/statem/statem_clnt.c b/ssl/statem/statem_clnt.c

index d84cc0460f4e2e4f5383eb1b28fd3e410d1ba954..09fba3d8c0c7283a3058c9377c076184e3e0e3bc 100644 (file)
--- a/ssl/statem/statem_clnt.c
+++ b/ssl/statem/statem_clnt.c
@@ -2905,6 +2905,7 @@ static int tls_construct_cke_psk_preamble(SSL *s, WPACKET *pkt)
      if (psklen > PSK_MAX_PSK_LEN) {
          SSLfatal(s, SSL_AD_HANDSHAKE_FAILURE,
                   SSL_F_TLS_CONSTRUCT_CKE_PSK_PREAMBLE, ERR_R_INTERNAL_ERROR);
+        psklen = PSK_MAX_PSK_LEN;   /* Avoid overrunning the array on cleanse */
          goto err;
      } else if (psklen == 0) {
          SSLfatal(s, SSL_AD_HANDSHAKE_FAILURE,
author	Pauli <ppzgs1@gmail.com>
	Wed, 17 Mar 2021 02:00:42 +0000 (12:00 +1000)
committer	Pauli <ppzgs1@gmail.com>
	Thu, 18 Mar 2021 11:21:06 +0000 (21:21 +1000)