CHANGES · d3273ef6c549d1bf74d18c9056218c1d8b98a2b9 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL · GitLab

Add a sanity check on the length of pkeyutl inputs · a0abb6a1

Matt Caswell authored May 17, 2018



When signing or verifying a file using pkeyutl the input is supposed to
be a hash. Some algorithms sanity check the length of the input, while
others don't and silently truncate. To avoid accidents we check that the
length of the input looks sane.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6284)

a0abb6a1

To find the state of this project's repository at the time of any of these versions, check out the tags.