Google Git
Sign in
flutter / third_party / openssl / 2650515394537ad30110f322e56d3afe710d0886
commit2650515394537ad30110f322e56d3afe710d0886[log] [tgz]
authorRichard Levitte <levitte@openssl.org>Fri Dec 30 21:57:28 2016 +0100
committerMatt Caswell <matt@openssl.org>Thu Jan 26 10:54:01 2017 +0000
tree8d8a0d93d4c54446d7a01748dbd87d7ea72c2688
parent2198b3a55de681e1f3c23edb0586afe13f438051 [diff]
Better check of DH parameters in TLS data

When the client reads DH parameters from the TLS stream, we only
checked that they all are non-zero.  This change updates the check to
use DH_check_params()

DH_check_params() is a new function for light weight checking of the p
and g parameters:

    check that p is odd
    check that 1 < g < p - 1

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
4 files changed
tree: 8d8a0d93d4c54446d7a01748dbd87d7ea72c2688
  1. .github/
  2. apps/
  3. Configurations/
  4. crypto/
  5. demos/
  6. doc/
  7. engines/
  8. external/
  9. fuzz/
  10. include/
  11. ms/
  12. os-dep/
  13. ssl/
  14. test/
  15. tools/
  16. util/
  17. VMS/
  18. boringssl
  19. .gitattributes
  20. .gitignore
  21. .gitmodules
  22. .travis-create-release.sh
  23. .travis.yml
  24. ACKNOWLEDGEMENTS
  25. appveyor.yml
  26. AUTHORS
  27. build.info
  28. CHANGES
  29. config
  30. config.com
  31. Configure
  32. CONTRIBUTING
  33. e_os.h
  34. FAQ
  35. INSTALL
  36. LICENSE
  37. Makefile.shared
  38. NEWS
  39. NOTES.DJGPP
  40. NOTES.PERL
  41. NOTES.VMS
  42. NOTES.WIN
  43. README
  44. README.ECC
  45. README.ENGINE
  46. README.FIPS