Correct dangerous typo in include/polarssl/ssl.h The definition of SSL_MAC_ADD depends on the presence of the configuration option POLARSSL_ARC4_C, which was misspelled as POLARSSL_RC4_C in ssl.h, leading to a too small buffer and subsequently to a buffer overflow during record processing. This commit fixes the typo.

commit: ad951d131d2ca54b9e7f1dc6f3bd957444eaef28 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Wed Nov 29 17:51:03 2017 +0000
committer: Hanno Becker <hanno.becker@arm.com> Wed Nov 29 18:02:49 2017 +0000
tree: 76664ea407a9dc50969ea93e2619cc31dd93db97
parent: 0a139f9a03c80b9533f7a2e5566afdbf191a611e [diff]
diff --git a/ChangeLog b/ChangeLog
index f77278b..67777d4 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -11,6 +11,8 @@
      side.
 
 Bugfix
+   * Fix typo in ssl.h leading to a too small value of SSL_MAC_ADD
+     in case CBC is disabled but ARC4 is enabled.
    * Fix memory leak in ssl_set_hostname() when called multiple times.
      Found by projectgus and jethrogb, #836.
    * Fix usage help in ssl_server2 example. Found and fixed by Bei Lin.

diff --git a/include/polarssl/ssl.h b/include/polarssl/ssl.h
index 9a3fb8a..32c07c2 100644
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h

@@ -303,7 +303,7 @@
 #define SSL_COMPRESSION_ADD             0
 #endif
 
-#if defined(POLARSSL_RC4_C) || defined(POLARSSL_CIPHER_MODE_CBC)
+#if defined(POLARSSL_ARC4_C) || defined(POLARSSL_CIPHER_MODE_CBC)
 /* Ciphersuites using HMAC */
 #if defined(POLARSSL_SHA512_C)
 #define SSL_MAC_ADD                 48  /* SHA-384 used for HMAC */
commit	ad951d131d2ca54b9e7f1dc6f3bd957444eaef28	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Wed Nov 29 17:51:03 2017 +0000
committer	Hanno Becker <hanno.becker@arm.com>	Wed Nov 29 18:02:49 2017 +0000
tree	76664ea407a9dc50969ea93e2619cc31dd93db97
parent	0a139f9a03c80b9533f7a2e5566afdbf191a611e [diff]