From: Fabian Keil <fk@fabiankeil.de>
Date: Thu, 14 Jan 2021 10:58:12 +0000 (+0100)
Subject: OpenSSL ssl_base64_encode(): Fix buffer size check
X-Git-Tag: v_3_0_30~101
X-Git-Url: http://www.privoxy.org/gitweb/man-page/static/@default-cgi@toggle?a=commitdiff_plain;h=f5c1b608535aab58c97bf9623c08b479bc6dcf49;p=privoxy.git

OpenSSL ssl_base64_encode(): Fix buffer size check

In practice it didn't matter because Privoxy always
provides a sufficiently-sized buffer.
---

diff --git a/openssl.c b/openssl.c
index 73aadebf..fe4da8fd 100644
--- a/openssl.c
+++ b/openssl.c
@@ -1287,7 +1287,7 @@ extern int ssl_base64_encode(unsigned char *dst, size_t dlen, size_t *olen,
                              const unsigned char *src, size_t slen)
 {
    *olen = 4 * ((slen/3)  + ((slen%3) ? 1 : 0)) + 1;
-   if (*olen < dlen)
+   if (*olen > dlen)
    {
       return ENOBUFS;
    }