kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
2d05568a7b
boringssl/crypto/rsa
History
David Benjamin fd67f61bb4 Fix bounds check in RSA_verify_PKCS1_PSS_mgf1 when sLen is -2. 
(Imported from upstream's 04cf39207f94abf89b3964c7710f22f829a1a78f.)

The other half of the change was fixed earlier, but this logic was still
off. This code is kind of a mess and needs a rewrite, but import the
change to get it correct and sufficiently tested first.

(If we could take the sLen = -2 case away altogether, that would be
great...)

Change-Id: I5786e980f26648822633fc216315e8f77ed4d45b
Reviewed-on: https://boringssl-review.googlesource.com/14321
Reviewed-by: Steven Valdez <svaldez@google.com>
Commit-Queue: Steven Valdez <svaldez@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
2017-03-21 16:17:19 +00:00
..
blinding.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00
CMakeLists.txt Convert rsa_test to GTest. 2017-02-16 22:23:16 +00:00
internal.h Require the public exponent to be available in RSA blinding. 2016-04-18 23:34:46 +00:00
padding.c Fix bounds check in RSA_verify_PKCS1_PSS_mgf1 when sLen is -2. 2017-03-21 16:17:19 +00:00
rsa_asn1.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00
rsa_impl.c Remove BN_FLG_CONSTTIME. 2017-01-12 02:00:44 +00:00
rsa_test.cc Convert rsa_test to GTest. 2017-02-16 22:23:16 +00:00
rsa.c Work around language and compiler bug in memcpy, etc. 2016-12-21 20:34:47 +00:00