tyler.durden/audk
1
0
Fork 0
mirror of https://github.com/acidanthera/audk.git synced 2025-07-25 22:54:51 +02:00
Code Issues Packages Projects Releases Wiki Activity

NetworkPkg/IpSecDxe: Add check to avoid possible divide by zero

Browse Source 
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Hao Wu <hao.a.wu@intel.com>
Reviewed-by: Wu Jiaxin <jiaxin.wu@intel.com>
Reviewed-by: Fu Siyuan <siyuan.fu@intel.com>
This commit is contained in:
Hao Wu 2016-11-16 13:52:20 +08:00
parent 5af4388433
commit ce8e582c06
1 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
NetworkPkg/IpSecDxe/Ikev2/Utility.c
View File

@ -2,7 +2,7 @@
The Common operations used by IKE Exchange Process. The Common operations used by IKE Exchange Process.
(C) Copyright 2015 Hewlett-Packard Development Company, L.P.<BR> (C) Copyright 2015 Hewlett-Packard Development Company, L.P.<BR>
Copyright (c) 2010 - 2016, Intel Corporation. All rights reserved.<BR> Copyright (c) 2010 - 2017, Intel Corporation. All rights reserved.<BR>
This program and the accompanying materials This program and the accompanying materials
are licensed and made available under the terms and conditions of the BSD License are licensed and made available under the terms and conditions of the BSD License
@ -2627,6 +2627,8 @@ Ikev2ChildSaParseSaPayload (
@retval EFI_SUCCESS The operation complete successfully. @retval EFI_SUCCESS The operation complete successfully.
@retval EFI_INVALID_PARAMETER If NumFragments is zero. @retval EFI_INVALID_PARAMETER If NumFragments is zero.
If the authentication algorithm given by HashAlgId
cannot be found.
@retval EFI_OUT_OF_RESOURCES If the required resource can't be allocated. @retval EFI_OUT_OF_RESOURCES If the required resource can't be allocated.
@retval Others The operation is failed. @retval Others The operation is failed.
@ -2663,6 +2665,10 @@ Ikev2SaGenerateKey (
LocalFragments[2].Data = NULL; LocalFragments[2].Data = NULL;
AuthKeyLength = IpSecGetHmacDigestLength (HashAlgId); AuthKeyLength = IpSecGetHmacDigestLength (HashAlgId);
if (AuthKeyLength == 0) {
return EFI_INVALID_PARAMETER;
}
DigestSize = AuthKeyLength; DigestSize = AuthKeyLength;
Digest = AllocateZeroPool (AuthKeyLength); Digest = AllocateZeroPool (AuthKeyLength);