git.openssl.org Git - openssl.git/commit

author	Richard Levitte <levitte@openssl.org>
	Fri, 20 Oct 2023 07:18:19 +0000 (09:18 +0200)
committer	Hugo Landau <hlandau@openssl.org>
	Mon, 6 Nov 2023 07:53:22 +0000 (07:53 +0000)
commit	ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6
tree	cbf073a8775686b0e3f94c6ef0f69e1a55a0e934	tree \| snapshot
parent	6cde903a369250719fd177727de97a7aebdd7bc6	commit \| diff

Make DH_check_pub_key() and DH_generate_key() safer yet

We already check for an excessively large P in DH_generate_key(), but not in
DH_check_pub_key(), and none of them check for an excessively large Q.

This change adds all the missing excessive size checks of P and Q.

It's to be noted that behaviours surrounding excessively sized P and Q
differ. DH_check() raises an error on the excessively sized P, but only
sets a flag for the excessively sized Q. This behaviour is mimicked in
DH_check_pub_key().

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Hugo Landau <hlandau@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/22518)

crypto/dh/dh_check.c		diff \| blob \| history
crypto/dh/dh_err.c		diff \| blob \| history
crypto/dh/dh_key.c		diff \| blob \| history
crypto/err/openssl.txt		diff \| blob \| history
include/crypto/dherr.h		diff \| blob \| history
include/openssl/dh.h		diff \| blob \| history
include/openssl/dherr.h		diff \| blob \| history