TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 5d9224e11cb76712f4416da71715fec09aef12e7
commit5d9224e11cb76712f4416da71715fec09aef12e7[log] [tgz]
authorGilles Peskine <Gilles.Peskine@arm.com>Thu Oct 19 15:23:49 2017 +0200
committerGilles Peskine <Gilles.Peskine@arm.com>Thu Oct 19 15:47:13 2017 +0200
tree2464d899c623ee1cbe60e3f6932fbf9147559703
parent7addb7f0a0c3f7b2294780022cf8c84990d9bca0 [diff]
RSA PSS: fix first byte check for keys of size 8N+1

For a key of size 8N+1, check that the first byte after applying the
public key operation is 0 (it could have been 1 instead). The code was
incorrectly doing a no-op check instead, which led to invalid
signatures being accepted. Not a security flaw, since you would need the
private key to craft such an invalid signature, but a bug nonetheless.
2 files changed
tree: 2464d899c623ee1cbe60e3f6932fbf9147559703
  1. configs/
  2. doxygen/
  3. include/
  4. library/
  5. programs/
  6. scripts/
  7. tests/
  8. visualc/
  9. .gitignore
  10. .travis.yml
  11. ChangeLog
  12. CMakeLists.txt
  13. DartConfiguration.tcl
  14. LICENSE
  15. Makefile
  16. README.rst