From 55643cf5ffdfb401a261b250800eb7c18c64348d Mon Sep 17 00:00:00 2001
From: baslr <manuel@arangodb.com>
Date: Wed, 19 Apr 2017 15:35:40 +0200
Subject: [PATCH] fixed memory allocation which resulted in an out of bounds
 read

---
 lib/Ssl/SslInterface.cpp | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lib/Ssl/SslInterface.cpp b/lib/Ssl/SslInterface.cpp
index 532742fe7f..ce59d2fc1e 100644
--- a/lib/Ssl/SslInterface.cpp
+++ b/lib/Ssl/SslInterface.cpp
@@ -217,7 +217,7 @@ void sslBASE64(char const* inputStr, char*& outputStr, size_t& outputLen) {
 std::string sslPBKDF2HS1(char const* salt, size_t saltLength, char const* pass,
                       size_t passLength, int iter, int keyLength) {
   unsigned char* dk =
-      (unsigned char*)TRI_SystemAllocate(EVP_MAX_MD_SIZE + 1, false);
+      (unsigned char*)TRI_SystemAllocate(keyLength + 1, false);
 
   PKCS5_PBKDF2_HMAC_SHA1(pass, (int)passLength, (const unsigned char*)salt,
                          (int)saltLength, iter, keyLength, dk);
@@ -250,7 +250,7 @@ std::string sslPBKDF2(char const* salt, size_t saltLength, char const* pass,
   }
 
   unsigned char* dk =
-      (unsigned char*)TRI_SystemAllocate(EVP_MAX_MD_SIZE + 1, false);
+      (unsigned char*)TRI_SystemAllocate(keyLength + 1, false);
 
   PKCS5_PBKDF2_HMAC(pass, (int)passLength, (const unsigned char*)salt,
                          (int)saltLength, iter, evp_md, keyLength, dk);