Google Git
Sign in
flutter / third_party / openssl / a0abb6a10f4c5fc6dd20c487aa0db085fbfb3562
commita0abb6a10f4c5fc6dd20c487aa0db085fbfb3562[log] [tgz]
authorMatt Caswell <matt@openssl.org>Thu May 17 12:53:07 2018 +0100
committerMatt Caswell <matt@openssl.org>Thu May 24 17:26:03 2018 +0100
tree711cca97bea1c2b1a25d66496c246e1592332282
parent07824f304a220ea09ec369bad60f4fcfd01d5d14 [diff]
Add a sanity check on the length of pkeyutl inputs

When signing or verifying a file using pkeyutl the input is supposed to
be a hash. Some algorithms sanity check the length of the input, while
others don't and silently truncate. To avoid accidents we check that the
length of the input looks sane.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6284)
3 files changed
tree: 711cca97bea1c2b1a25d66496c246e1592332282
  1. .github/
  2. apps/
  3. Configurations/
  4. crypto/
  5. demos/
  6. doc/
  7. engines/
  8. external/
  9. fuzz/
  10. include/
  11. ms/
  12. os-dep/
  13. ssl/
  14. test/
  15. tools/
  16. util/
  17. VMS/
  18. boringssl
  19. krb5
  20. pyca-cryptography
  21. .gitattributes
  22. .gitignore
  23. .gitmodules
  24. .travis-apt-pin.preferences
  25. .travis-create-release.sh
  26. .travis.yml
  27. ACKNOWLEDGEMENTS
  28. appveyor.yml
  29. AUTHORS
  30. build.info
  31. CHANGES
  32. config
  33. config.com
  34. Configure
  35. CONTRIBUTING
  36. e_os.h
  37. FAQ
  38. INSTALL
  39. LICENSE
  40. NEWS
  41. NOTES.ANDROID
  42. NOTES.DJGPP
  43. NOTES.PERL
  44. NOTES.UNIX
  45. NOTES.VMS
  46. NOTES.WIN
  47. README
  48. README.ENGINE
  49. README.FIPS