pki_crypto: plug pki_signature_from_blob leaks
e05e4ae9712b
Actions

Authored by simonsj on Jan 29 2019, 10:32 PM.

Description

pki_crypto: plug pki_signature_from_blob leaks

In 3341f49a49a07cbce003e487ef24a2042e800f01, some direct assignments
to OpenSSL structures was replaced with usage of getter and setter
macros. Ensure to bignum_safe_free a couple of intermediate values
in error paths for pki_signature_from_blob DSS and ECDSA cases.

Signed-off-by: Jon Simons <jon@jonsimons.org>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
(cherry picked from commit c0102e6a5953789ccda93e8dea956e8cc8a046e9)

Details

Committed

asn	Feb 7 2019, 2:22 PM

Parents

rLIBSSHb6d275537e99: pki: NULL check pki_signature_from_rsa_blob result

Branches

Unknown

Tags

Unknown

Event Timeline

asn committed rLIBSSHe05e4ae9712b: pki_crypto: plug pki_signature_from_blob leaks (authored by simonsj).Feb 7 2019, 2:22 PM

Changes (1)

				Path	Packages
	M			src/pki_crypto.c

rLIBSSHe05e4ae9712b

View Options