From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from duke.felloff.net ([216.126.196.34]) by ur; Tue Jan 17 16:37:00 EST 2017
Message-ID: <0f72c8d86c729b6da085be697a7c56e3@felloff.net>
Date: Tue, 17 Jan 2017 22:36:42 +0100
From: cinap_lenrek@felloff.net
To: 9front@9front.org
Subject: Re: [9front] out of bound access in libsec
In-Reply-To: <355339a4ebae631de2783a2d15952250@felloff.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
List-ID: <9front.9front.org>
List-Help: <http://lists.9front.org>
X-Glyph: ➈
X-Bullshit: framework-scale realtime-java pipelining-aware full-stack controller 

on 1), the comment says right here that it does not deal with keys
bigger than 128 bits. which is implied by s->keybytes == 16. so rounds
is 10 here as of aes_setupEnc(). given 4*(10+1) == 48, so the buffer
size holds.

--
cinap