commit | a0abb6a10f4c5fc6dd20c487aa0db085fbfb3562 | [log] [tgz] |
---|---|---|
author | Matt Caswell <matt@openssl.org> | Thu May 17 12:53:07 2018 +0100 |
committer | Matt Caswell <matt@openssl.org> | Thu May 24 17:26:03 2018 +0100 |
tree | 711cca97bea1c2b1a25d66496c246e1592332282 | |
parent | 07824f304a220ea09ec369bad60f4fcfd01d5d14 [diff] |
Add a sanity check on the length of pkeyutl inputs When signing or verifying a file using pkeyutl the input is supposed to be a hash. Some algorithms sanity check the length of the input, while others don't and silently truncate. To avoid accidents we check that the length of the input looks sane. Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6284)