git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Łukasz 'sil2100' Zemczak <lukasz.zemczak@gmail.com>
	Thu, 24 Jul 2025 08:30:31 +0000 (10:30 +0200)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 14 Oct 2025 14:52:41 +0000 (16:52 +0200)
commit	dac3ed3e033f0bf4768ac5f300ca0636d3f8d09f
tree	9b4c7df291b40c5befd768a81dae0b948a3ce346	tree
parent	f23f706a26f2e7cd5dd5221d57e2d0db28530f4e	commit \| diff

ML-DSA: Validate signature length before decoding

Page 27 of https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.204.pdf mentions
the Input: Signature length depending on the parameters, so the signature
length should be checked before we proceed with decode.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/28093)

crypto/ml_dsa/ml_dsa_sign.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom