Open
Bug 228816
Opened 21 years ago
Updated 2 years ago
SECU_StripTagAndLength does not verify length bytes
Categories
(NSS :: Tools, defect, P3)
Tracking
(Not tracked)
NEW
People
(Reporter: nelson, Unassigned)
Details
This bug was formerly comment 7 in bug 222568. I am filing it here so that bug 222568 can be resolved fixed. In the new function SECU_StripTagAndLength, you just skip over the length bytes, without calculating them to see if they match (or at least are not greater than) the amount in i->len . The code does perform the calculation of the length, but only in SECU_PrintSet. I think that's not the right place to do it. It should be done and checked in SECU_StripTagAndLength. For the callers that want to have the value of the length bytes returned to them (primarily the printset function), you could return the value in an optional PRIn32* argument to SECU_StripTagAndLength (set to NULL if the caller doesn't care about the length bytes).
Reporter | ||
Updated•19 years ago
|
QA Contact: bishakhabanerjee → jason.m.reid
Reporter | ||
Updated•18 years ago
|
Assignee: wtchang → nobody
QA Contact: jason.m.reid → tools
Reporter | ||
Updated•18 years ago
|
Priority: -- → P3
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•