From d22f40f7e9a4b3518c9443f84b1d92141fe5f87e Mon Sep 17 00:00:00 2001
From: Davide De Rosa <keeshux@gmail.com>
Date: Tue, 17 Sep 2019 23:41:35 +0200
Subject: [PATCH] Fix potential OOB in memcmp()

---
 TunnelKit/Sources/Core/ZeroingData.m | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/TunnelKit/Sources/Core/ZeroingData.m b/TunnelKit/Sources/Core/ZeroingData.m
index 709076d..88db09e 100644
--- a/TunnelKit/Sources/Core/ZeroingData.m
+++ b/TunnelKit/Sources/Core/ZeroingData.m
@@ -270,8 +270,10 @@
 - (BOOL)isEqualToData:(NSData *)data
 {
     NSParameterAssert(data);
-    NSParameterAssert(data.length <= _count);
 
+    if (data.length != _count) {
+        return NO;
+    }
     return !memcmp(_bytes, data.bytes, _count);
 }