зеркало из https://github.com/mozilla/gecko-dev.git
0294a21add
Summary: After calling mResult.SetLength(mData.Length() + 16) we should check that the integer addition didn't overflow. It seems at the moment impossible to create ArrayBuffers of size >= 0x0xfffffff0, however adding a check here doesn't hurt. mResult.Length() is passed to the PK11 API functions as a maxOut parameter and /should/ be checked by the softoken crypto algorithm implementations. AES-ECB and AES-GCM seem to do that correctly. Reviewers: keeler Reviewed By: keeler Subscribers: mcote, ttaubert, jcj, keeler Bug #: 1413841 Differential Revision: https://phabricator.services.mozilla.com/D188 |
||
|---|---|---|
| .. | ||
| test | ||
| CryptoBuffer.cpp | ||
| CryptoBuffer.h | ||
| CryptoKey.cpp | ||
| CryptoKey.h | ||
| KeyAlgorithmProxy.cpp | ||
| KeyAlgorithmProxy.h | ||
| WebCryptoCommon.h | ||
| WebCryptoTask.cpp | ||
| WebCryptoTask.h | ||
| WebCryptoThreadPool.cpp | ||
| WebCryptoThreadPool.h | ||
| moz.build | ||