Correct dangerous typo in include/polarssl/ssl.h

The definition of SSL_MAC_ADD depends on the presence of the configuration option POLARSSL_ARC4_C, which was misspelled as POLARSSL_RC4_C in ssl.h, leading to a too small buffer and subsequently to a buffer overflow during record processing. This commit fixes the typo.
2026-04-05 20:15:36 +02:00 · 2017-11-29 17:51:03 +00:00
parent 0a139f9a03
commit ad951d131d
2 changed files with 3 additions and 1 deletions
--- a/2
+++ b/2
@@ -11,6 +11,8 @@ Security
     side.

 Bugfix
+   * Fix typo in ssl.h leading to a too small value of SSL_MAC_ADD
+     in case CBC is disabled but ARC4 is enabled.
   * Fix memory leak in ssl_set_hostname() when called multiple times.
     Found by projectgus and jethrogb, #836.
   * Fix usage help in ssl_server2 example. Found and fixed by Bei Lin.
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h
@@ -303,7 +303,7 @@
 #define SSL_COMPRESSION_ADD             0
 #endif

-#if defined(POLARSSL_RC4_C) || defined(POLARSSL_CIPHER_MODE_CBC)
+#if defined(POLARSSL_ARC4_C) || defined(POLARSSL_CIPHER_MODE_CBC)
 /* Ciphersuites using HMAC */
 #if defined(POLARSSL_SHA512_C)
 #define SSL_MAC_ADD                 48  /* SHA-384 used for HMAC */