x509_get_authority_key_id: add length check + test Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>

commit: 6ec839a1f95c5270eb5347a675b4c7497638737c [log] [tgz]
author: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Wed Feb 01 11:06:08 2023 +0100
committer: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Tue Apr 04 17:48:28 2023 +0200
tree: f5d8dcf3a4eb4d9c5d25b06c5c970c19de3b6f08
parent: 8661fed943806ce3afb34b68ac2f5d4765db00a9 [diff] [blame]
diff --git a/library/x509_crt.c b/library/x509_crt.c
index 7389a9c..1ebe96a 100644
--- a/library/x509_crt.c
+++ b/library/x509_crt.c

@@ -751,6 +751,11 @@
         return ret;
     }
 
+    if (*p + len != end) {
+        return MBEDTLS_ERROR_ADD(MBEDTLS_ERR_X509_INVALID_EXTENSIONS,
+                                 MBEDTLS_ERR_ASN1_LENGTH_MISMATCH);
+    }
+
     if ((ret = mbedtls_asn1_get_tag(p, end, &len,
                                     MBEDTLS_ASN1_CONTEXT_SPECIFIC)) != 0) {
         /* KeyIdentifier is an OPTIONAL field */
commit	6ec839a1f95c5270eb5347a675b4c7497638737c	[log] [tgz]
author	Przemek Stekiel <przemyslaw.stekiel@mobica.com>	Wed Feb 01 11:06:08 2023 +0100
committer	Przemek Stekiel <przemyslaw.stekiel@mobica.com>	Tue Apr 04 17:48:28 2023 +0200
tree	f5d8dcf3a4eb4d9c5d25b06c5c970c19de3b6f08
parent	8661fed943806ce3afb34b68ac2f5d4765db00a9 [diff] [blame]