]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 589286e) | patch
Check for excess data in CertificateVerify
authorViktor Dukhovni <openssl-users@dukhovni.org>
Wed, 28 Aug 2024 10:36:09 +0000 (20:36 +1000)
committerTomas Mraz <tomas@openssl.org>
Thu, 29 Aug 2024 17:32:14 +0000 (19:32 +0200)
commit7d90a42eef47af7aac25abbf1769c1ef2e4babe3
tree5dd94d83158ec4133c4390592a29ed98204913e9tree | snapshot
parent589286efca5ab637ae29ef7f3522dc85ee080d55commit | diff
Check for excess data in CertificateVerify

As reported by Alicja Kario, we ignored excess bytes after the
signature payload in TLS CertificateVerify Messages.  These
should not be present.

Fixes: #25298
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25302)

(cherry picked from commit b4e4bf29ba3c67662c60ceed9afa2dd301e93273)
ssl/statem/statem_lib.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git