Fix possible buffer overflow with PSK

commit: b2bf5a1bbbf3652881ed55181d1f68dc6ea75dfe [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Mar 25 16:28:12 2014 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Mar 26 12:58:50 2014 +0100
tree: 1fc0e4a87ca0230b25845839f59d2d0decf48fea
parent: fdddac90a6f3b0580d0636d1a57ceba4fc2988cb [diff] [blame]
diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index 8549050..0241b43 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -2455,7 +2455,7 @@
 
     ret = pk_decrypt( ssl_own_key( ssl ), p, len,
                       pms, &ssl->handshake->pmslen,
-                      sizeof(ssl->handshake->premaster),
+                      sizeof( ssl->handshake->premaster ) - pms_offset,
                       ssl->f_rng, ssl->p_rng );
 
     if( ret != 0 || ssl->handshake->pmslen != 48 ||
commit	b2bf5a1bbbf3652881ed55181d1f68dc6ea75dfe	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Mar 25 16:28:12 2014 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Mar 26 12:58:50 2014 +0100
tree	1fc0e4a87ca0230b25845839f59d2d0decf48fea
parent	fdddac90a6f3b0580d0636d1a57ceba4fc2988cb [diff] [blame]