[openssl/openssl] ecacbc: Use the same encryption growth macro consistently

Matt Caswell Mon, 07 Nov 2022 09:20:18 -0800

  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: ecacbc5e3c48901417e8e05bbf1d29df78610607
      
https://github.com/openssl/openssl/commit/ecacbc5e3c48901417e8e05bbf1d29df78610607
  Author: Matt Caswell <m...@openssl.org>
  Date:   2022-11-07 (Mon, 07 Nov 2022)


  Changed paths:
    M ssl/record/methods/tls_common.c

  Log Message:
  -----------
  Use the same encryption growth macro consistently

We had two different macros for calculating the potential growth due to
encryption. The macro we use for allocating the underlying buffer should be
the same one that we use for reserving bytes for encryption growth.

Also if we are adding the MAC independently of the cipher algorithm then
the encryption growth will not include that MAC so we should remove it
from the amount of bytes that we reserve for that growth. Otherwise we
might exceed our buffer size and the WPACKET_reserve operation will
fail.

Reviewed-by: Hugo Landau <hlan...@openssl.org>
Reviewed-by: Tomas Mraz <to...@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19622)

[openssl/openssl] ecacbc: Use the same encryption growth macro consistently

Reply via email to