]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 275a7b9) | patch
Disallow Ed448 signature malleability
authorMatt Caswell <matt@openssl.org>
Mon, 3 Dec 2018 17:01:07 +0000 (17:01 +0000)
committerMatt Caswell <matt@openssl.org>
Tue, 11 Dec 2018 11:53:55 +0000 (11:53 +0000)
commit08afd2f37a4465c90b9b9e2081c9e8df4726db89
tree97739635c0d0032a207e64911f39dd46b7a10518tree | snapshot
parent275a7b9e5eef3af2834b734b42c5054149ff5e87commit | diff
Disallow Ed448 signature malleability

Check that s is less than the order before attempting to verify the
signature as per RFC8032 5.2.7

Fixes #7706

Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
(Merged from https://github.com/openssl/openssl/pull/7748)
crypto/ec/curve448/eddsa.c diff | blob | blame | history
A mirror of the official openssl repository