From 16cb1559e6c7ef565d9d44a20b82d2e5f39dbd5b Mon Sep 17 00:00:00 2001
From: Peter Dettman <peter.dettman@bouncycastle.org>
Date: Thu, 31 Aug 2017 17:38:16 +0700
Subject: Avoid integer overflow in argument checks

- see https://github.com/bcgit/bc-csharp/issues/91
---
 crypto/src/crypto/parameters/KeyParameter.cs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'crypto/src')

diff --git a/crypto/src/crypto/parameters/KeyParameter.cs b/crypto/src/crypto/parameters/KeyParameter.cs
index 33dff96d7..043adf276 100644
--- a/crypto/src/crypto/parameters/KeyParameter.cs
+++ b/crypto/src/crypto/parameters/KeyParameter.cs
@@ -27,7 +27,7 @@ namespace Org.BouncyCastle.Crypto.Parameters
 				throw new ArgumentNullException("key");
 			if (keyOff < 0 || keyOff > key.Length)
 				throw new ArgumentOutOfRangeException("keyOff");
-			if (keyLen < 0 || (keyOff + keyLen) > key.Length)
+            if (keyLen < 0 || keyLen > (key.Length - keyOff))
 				throw new ArgumentOutOfRangeException("keyLen");
 
 			this.key = new byte[keyLen];
-- 
cgit 1.5.1