upstream: Ensure args to nh_update() fit within uint32, which it

author dtucker@openbsd.org <dtucker@openbsd.org>

Fri, 23 May 2025 11:25:35 +0000 (11:25 +0000)

committer Darren Tucker <dtucker@dtucker.net>

Fri, 23 May 2025 11:48:22 +0000 (21:48 +1000)
author dtucker@openbsd.org <dtucker@openbsd.org>
Fri, 23 May 2025 11:25:35 +0000 (11:25 +0000)
committer Darren Tucker <dtucker@dtucker.net>
Fri, 23 May 2025 11:48:22 +0000 (21:48 +1000)
diff --git a/umac.c b/umac.c

index d5958babfd349086b5aef2a46bdb1cb0ba949cb5..df90352604beda8b284386a88664393ea0851a3d 100644 (file)
--- a/umac.c
+++ b/umac.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: umac.c,v 1.23 2023/03/07 01:30:52 djm Exp $ */
+/* $OpenBSD: umac.c,v 1.24 2025/05/23 11:25:35 dtucker Exp $ */
  /* -----------------------------------------------------------------------
   *
   * umac.c -- C Implementation UMAC Message Authentication
@@ -6,7 +6,7 @@
   * Version 0.93b of rfc4418.txt -- 2006 July 18
   *
   * For a full description of UMAC message authentication see the UMAC
- * world-wide-web page at http://www.cs.ucdavis.edu/~rogaway/umac
+ * world-wide-web page at https://fastcrypto.org/umac/
   * Please report bugs and suggestions to the UMAC webpage.
   *
   * Copyright (c) 1999-2006 Ted Krovetz
@@ -1089,7 +1089,7 @@ static int uhash_update(uhash_ctx_t ctx, const u_char *input, long len)
           }
  
           /* pass remaining < L1_KEY_LEN bytes of input data to NH */
-         if (len) {
+         if (len > 0 && len <= UINT32_MAX) {
               nh_update(&ctx->hash, (const UINT8 *)input, len);
               ctx->msg_len += len;
           }
author	dtucker@openbsd.org <dtucker@openbsd.org>
	Fri, 23 May 2025 11:25:35 +0000 (11:25 +0000)
committer	Darren Tucker <dtucker@dtucker.net>
	Fri, 23 May 2025 11:48:22 +0000 (21:48 +1000)