mirror of
https://github.com/jedisct1/libsodium.git
synced 2024-12-19 18:15:18 -07:00
Fill the max output buffer size in sodium_bin2base64()
Unlike hex encoding, due to optional padding, computing the correct size is not straightforward. Ensuring that the string ends with `\0` is fine, but if the size is not exact, some unrelated data might be send around by the application. So, zero it to be safe.
This commit is contained in:
parent
6b43c1ddb6
commit
0af31aeb26
@ -215,7 +215,9 @@ sodium_bin2base64(char * const b64, const size_t b64_maxlen,
|
||||
while (b64_pos < b64_len) {
|
||||
b64[b64_pos++] = '=';
|
||||
}
|
||||
b64[b64_pos++] = 0;
|
||||
do {
|
||||
b64[b64_pos++] = 0U;
|
||||
} while (b64_pos < b64_maxlen);
|
||||
|
||||
return b64;
|
||||
}
|
||||
|
@ -161,7 +161,7 @@ main(void)
|
||||
b64_ = (char *) sodium_malloc(b64_len);
|
||||
randombytes_buf(bin, bin_len);
|
||||
memcpy(buf1, bin, bin_len);
|
||||
b64 = sodium_bin2base64(b64_, b64_len + 10, bin, bin_len,
|
||||
b64 = sodium_bin2base64(b64_, b64_len, bin, bin_len,
|
||||
sodium_base64_VARIANT_URLSAFE);
|
||||
assert(b64 != NULL);
|
||||
assert(sodium_base642bin(bin, bin_len + 10, b64, b64_len,
|
||||
|
Loading…
Reference in New Issue
Block a user