Fail gracefully upon unexpectedly large input to p25519 reduction Signed-off-by: Hanno Becker <hanno.becker@arm.com>

commit: 127fcabb21d6f81664eb9c7f351032f018e52e19 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Tue Apr 12 22:18:36 2022 +0100
committer: Hanno Becker <hanno.becker@arm.com> Tue Apr 12 22:18:36 2022 +0100
tree: 823ba16539f886718e7f9bd6a9e7e9016159511f
parent: bb04cb992ff1731b6fded7847c140f68fb1a6d46 [diff] [blame]
diff --git a/library/ecp_curves.c b/library/ecp_curves.c
index 571b0fe..5788b0d 100644
--- a/library/ecp_curves.c
+++ b/library/ecp_curves.c

@@ -5225,6 +5225,8 @@
     const size_t NT_n = N->n - P255_WIDTH;
     if( N->n <= P255_WIDTH )
         return( 0 );
+    if( NT_n > P255_WIDTH )
+        return( MBEDTLS_ERR_ECP_BAD_INPUT_DATA );
 
     /* Split N as N + 2^256 M */
     memset( Mp,   0,    sizeof( Mp ) );
commit	127fcabb21d6f81664eb9c7f351032f018e52e19	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Tue Apr 12 22:18:36 2022 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Tue Apr 12 22:18:36 2022 +0100
tree	823ba16539f886718e7f9bd6a9e7e9016159511f
parent	bb04cb992ff1731b6fded7847c140f68fb1a6d46 [diff] [blame]