From: Jouni Malinen <jouni@qca.qualcomm.com>
Date: Fri, 3 Nov 2017 17:01:24 +0000 (+0200)
Subject: DPP: Explicitly check that PKEX Qr is not the point-at-infinity
X-Git-Tag: hostap_2_7~897
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=5f5fff4363df68aba1b26868f9d3baa98a496570;p=thirdparty%2Fhostap.git

DPP: Explicitly check that PKEX Qr is not the point-at-infinity

This was already done for Qi, but the same needs to be done for Qr as
well.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
---

diff --git a/src/common/dpp.c b/src/common/dpp.c
index 566898b63..021c48798 100644
--- a/src/common/dpp.c
+++ b/src/common/dpp.c
@@ -5434,6 +5434,10 @@ static EC_POINT * dpp_pkex_derive_Qr(const struct dpp_curve_params *curve,
 	if (!hash_bn ||
 	    EC_POINT_mul(group2, Qr, NULL, Pr_point, hash_bn, bnctx) != 1)
 		goto fail;
+	if (EC_POINT_is_at_infinity(group, Qr)) {
+		wpa_printf(MSG_INFO, "DPP: Qr is the point-at-infinity");
+		goto fail;
+	}
 out:
 	EC_KEY_free(Pr_ec);
 	EVP_PKEY_free(Pr);