kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
afd565ff9c
boringssl/crypto/evp
History
David Benjamin 28243c08db Add PSS parameter check. 
Avoid seg fault by checking mgf1 parameter is not NULL. This can be
triggered during certificate verification so could be a DoS attack
against a client or a server enabling client authentication.

Thanks to Loïc Jonas Etienne (Qnective AG) for discovering this bug.

CVE-2015-3194

(Imported from upstream's c394a488942387246653833359a5c94b5832674e and test
data from 00456fded43eadd4bb94bf675ae4ea5d158a764f.)

Change-Id: Ic97059d42722fd810973ccb0c26c415c4eaae79a
Reviewed-on: https://boringssl-review.googlesource.com/6617
Reviewed-by: Adam Langley <agl@google.com>
2015-12-03 16:47:12 +00:00
..
algorithm.c Remove the func parameter to OPENSSL_PUT_ERROR. 2015-07-16 02:02:37 +00:00
CMakeLists.txt Add a run_tests target to run all tests. 2015-10-26 20:33:44 +00:00
digestsign.c Don't default to SHA-1 in |EVP_DigestSignInit|/|EVP_DigestVerifyInit|. 2015-10-26 21:26:51 +00:00
evp_asn1.c Defensively avoid assuming d2i functions don't advance on error. 2015-09-28 22:15:42 +00:00
evp_ctx.c Become partially -Wmissing-variable-declarations-clean. 2015-11-12 20:09:20 +00:00
evp_extra_test.cc Add PSS parameter check. 2015-12-03 16:47:12 +00:00
evp_test.cc Remove stl_compat.h. 2015-11-11 22:19:36 +00:00
evp_tests.txt Implement ECDSA_SIG_{parse,marshal} with crypto/bytestring. 2015-07-07 02:28:42 +00:00
evp.c Add get0 getters for EVP_PKEY. 2015-11-20 23:34:12 +00:00
internal.h Become partially -Wmissing-variable-declarations-clean. 2015-11-12 20:09:20 +00:00
p_dsa_asn1.c Fix several warnings that arise in Android. 2015-10-30 21:11:48 +00:00
p_ec_asn1.c Fix several warnings that arise in Android. 2015-10-30 21:11:48 +00:00
p_ec.c Remove superfluous SHA-1 dependency from EVP ECDSA code. 2015-09-15 23:18:44 +00:00
p_rsa_asn1.c Add PSS parameter check. 2015-12-03 16:47:12 +00:00
p_rsa.c Remove the func parameter to OPENSSL_PUT_ERROR. 2015-07-16 02:02:37 +00:00
pbkdf_test.cc Reject iterations=0 when calling PKCS5_PBKDF2_HMAC(). 2015-10-13 19:40:55 +00:00
pbkdf.c Reject iterations=0 when calling PKCS5_PBKDF2_HMAC(). 2015-10-13 19:40:55 +00:00
sign.c Take advantage of normalized return values. 2015-03-13 19:40:42 +00:00