From 260f62939d3bd708d7002225a2bd5905c15d0322 Mon Sep 17 00:00:00 2001
From: Aaron Jense <aaron@wolfssl.com>
Date: Thu, 14 Jun 2018 11:09:07 -0600
Subject: [PATCH] This change allows for the amount of bytes to be hashed(len)
 to be greater than offset and still checks that offset won't go out of bounds
 of array.

---
 jni/jni_md5.c | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/jni/jni_md5.c b/jni/jni_md5.c
index 9994377..3de42a1 100644
--- a/jni/jni_md5.c
+++ b/jni/jni_md5.c
@@ -109,8 +109,9 @@ Java_com_wolfssl_wolfcrypt_Md5_native_1update___3BII(
     JNIEnv* env, jobject this, jbyteArray data_buffer, jint offset, jint len)
 {
 #ifndef NO_MD5
-    Md5*  md5  = NULL;
-    byte* data = NULL;
+    Md5*   md5   = NULL;
+    byte*  data  = NULL;
+    jsize  bufSz = (*env)->GetArrayLength(env, data_buffer);
 
     md5 = (Md5*) getNativeStruct(env, this);
     if ((*env)->ExceptionOccurred(env)) {
@@ -120,7 +121,7 @@ Java_com_wolfssl_wolfcrypt_Md5_native_1update___3BII(
 
     data = getByteArray(env, data_buffer);
 
-    if (!md5 || !data || (offset > len)) {
+    if (!md5 || !data || (offset > bufSz)) {
         throwWolfCryptExceptionFromError(env, BAD_FUNC_ARG);
     } else {
         wc_Md5Update(md5, data + offset, len);