Fix k5crypto NSS iov processing bug

In k5_nss_gen_stream_iov(), don't stop processing the iov array if we run across a zero-length iov. (cherry picked from commit 08fafff) ticket: 8300 version_fixed: 1.14.1
krb5 · Dec 17, 2015 · 4682cfb · 4682cfb
1 parent ad14dbf
commit 4682cfb
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/lib/crypto/nss/enc_provider/enc_gen.c b/src/lib/crypto/nss/enc_provider/enc_gen.c
@@ -307,7 +307,7 @@ k5_nss_gen_stream_iov(krb5_key krb_key, krb5_data *state,
         int return_length;
         iov = &data[i];
         if (iov->data.length <= 0)
-            break;
+            continue;
 
         if (ENCRYPT_IOV(iov)) {
             rv = PK11_CipherOp(ctx, (unsigned char *)iov->data.data,