Merge pull request #6288 from JacobBarthelmeh/Testing

SparkiDev · web-flow · commit c4233e7aec2b · 2023-04-26T08:36:20.000+10:00
avoid callback buffer overwrite with sha512_224 and remove min from w…
diff --git a/wolfcrypt/src/port/caam/wolfcaam_cmac.c b/wolfcrypt/src/port/caam/wolfcaam_cmac.c
@@ -99,7 +99,8 @@ int wc_CAAM_Cmac(Cmac* cmac, const byte* key, word32 keySz, const byte* in,
                 WOLFSSL_MSG("Error with CMAC buffer size");
                 return -1;
             }
-            add = min(sz, (int)(AES_BLOCK_SIZE - cmac->bufferSz));
+            add = (sz < ((int)(AES_BLOCK_SIZE - cmac->bufferSz))) ? sz :
+                   (int)(AES_BLOCK_SIZE - cmac->bufferSz);
             XMEMCPY(&cmac->buffer[cmac->bufferSz], pt, add);
 
             cmac->bufferSz += add;
diff --git a/wolfcrypt/src/sha512.c b/wolfcrypt/src/sha512.c
@@ -1152,9 +1152,12 @@ static int Sha512_Family_Final(wc_Sha512* sha512, byte* hash, size_t digestSz,
 
 #ifdef WOLF_CRYPTO_CB
     if (sha512->devId != INVALID_DEVID) {
-        ret = wc_CryptoCb_Sha512Hash(sha512, NULL, 0, hash);
-        if (ret != CRYPTOCB_UNAVAILABLE)
+        byte localHash[WC_SHA512_DIGEST_SIZE];
+        ret = wc_CryptoCb_Sha512Hash(sha512, NULL, 0, localHash);
+        if (ret != CRYPTOCB_UNAVAILABLE) {
+            XMEMCPY(hash, localHash, digestSz);
             return ret;
+        }
         /* fall-through when unavailable */
     }
 #endif

Original file line number	Diff line number	Diff line change
`@@ -99,7 +99,8 @@ int wc_CAAM_Cmac(Cmac* cmac, const byte* key, word32 keySz, const byte* in,`
`99`	`99`	`WOLFSSL_MSG("Error with CMAC buffer size");`
`100`	`100`	`return -1;`
`101`	`101`	`}`
`102`		`- add = min(sz, (int)(AES_BLOCK_SIZE - cmac->bufferSz));`
	`102`	`+ add = (sz < ((int)(AES_BLOCK_SIZE - cmac->bufferSz))) ? sz :`
	`103`	`+ (int)(AES_BLOCK_SIZE - cmac->bufferSz);`
`103`	`104`	`XMEMCPY(&cmac->buffer[cmac->bufferSz], pt, add);`
`104`	`105`
`105`	`106`	`cmac->bufferSz += add;`