ssl_client2: Add buffer overflow check Add buffer overflow check to build_http_request(). Signed-off-by: Ronald Cron <ronald.cron@arm.com>

commit: 2fe0ec8c3195a4fdea120228f543a37120daf3fc [log] [tgz]
author: Ronald Cron <ronald.cron@arm.com> Tue Jan 23 17:20:46 2024 +0100
committer: Ronald Cron <ronald.cron@arm.com> Wed Feb 07 08:06:46 2024 +0100
tree: 784747bd9a23d5bcc0751b52e5837192b868945c
parent: ccfaefa361631c95d183611c02722dafe08b7455 [diff]
diff --git a/programs/ssl/ssl_client2.c b/programs/ssl/ssl_client2.c
index 0939393..b501b9f 100644
--- a/programs/ssl/ssl_client2.c
+++ b/programs/ssl/ssl_client2.c

@@ -733,6 +733,12 @@
     tail_len = strlen(GET_REQUEST_END);
     if (opt.request_size != DFL_REQUEST_SIZE) {
         request_size = (size_t) opt.request_size;
+    } else {
+        request_size = len + tail_len;
+    }
+
+    if (request_size > buf_size) {
+        return MBEDTLS_ERR_SSL_BUFFER_TOO_SMALL;
     }
 
     /* Add padding to GET request to reach opt.request_size in length */
commit	2fe0ec8c3195a4fdea120228f543a37120daf3fc	[log] [tgz]
author	Ronald Cron <ronald.cron@arm.com>	Tue Jan 23 17:20:46 2024 +0100
committer	Ronald Cron <ronald.cron@arm.com>	Wed Feb 07 08:06:46 2024 +0100
tree	784747bd9a23d5bcc0751b52e5837192b868945c
parent	ccfaefa361631c95d183611c02722dafe08b7455 [diff]