Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Extra validation to keep static analyzers happy

Use of two variables to track bounds checking seems to be a bit too much
for some static analyzers, so add an extra condition for buffer padding
to avoid incorrect warnings.

Signed-hostap: Jouni Malinen <j@w1.fi>
Jouni Malinen 12 years ago
parent
de61795e7c
commit
5bfc46bb55
1 changed files with 1 additions and 1 deletions
Split View Show Diff Stats
  1. 1 1
      src/ap/wpa_auth_ft.c

+ 1 - 1
src/ap/wpa_auth_ft.c
View File 

@@ -416,7 +416,7 @@ static u8 * wpa_ft_gtk_subelem(struct wpa_state_machine *sm, size_t *len)
 
 		pad_len = 8 - pad_len;
 
 	if (key_len + pad_len < 16)
 
 		pad_len += 8;
 
-	if (pad_len) {
 
+	if (pad_len && key_len < sizeof(keybuf)) {
 
 		os_memcpy(keybuf, gsm->GTK[gsm->GN - 1], key_len);
 
 		os_memset(keybuf + key_len, 0, pad_len);
 
 		keybuf[key_len] = 0xdd;