From f48505bfb2b479694c01f7c56bd3548dfe243f46 Mon Sep 17 00:00:00 2001 From: Gary Lin Date: Wed, 15 Mar 2017 15:42:28 +0800 Subject: Update to openssl 1.0.2k Signed-off-by: Gary Lin --- Cryptlib/OpenSSL/crypto/rsa/rsa_pmeth.c | 4 ++++ 1 file changed, 4 insertions(+) (limited to 'Cryptlib/OpenSSL/crypto/rsa/rsa_pmeth.c') diff --git a/Cryptlib/OpenSSL/crypto/rsa/rsa_pmeth.c b/Cryptlib/OpenSSL/crypto/rsa/rsa_pmeth.c index 94db87a0..ac583bf6 100644 --- a/Cryptlib/OpenSSL/crypto/rsa/rsa_pmeth.c +++ b/Cryptlib/OpenSSL/crypto/rsa/rsa_pmeth.c @@ -373,6 +373,10 @@ static int pkey_rsa_verify(EVP_PKEY_CTX *ctx, if (rctx->pad_mode == RSA_PKCS1_PADDING) return RSA_verify(EVP_MD_type(rctx->md), tbs, tbslen, sig, siglen, rsa); + if (tbslen != (size_t)EVP_MD_size(rctx->md)) { + RSAerr(RSA_F_PKEY_RSA_VERIFY, RSA_R_INVALID_DIGEST_LENGTH); + return -1; + } if (rctx->pad_mode == RSA_X931_PADDING) { if (pkey_rsa_verifyrecover(ctx, NULL, &rslen, sig, siglen) <= 0) return 0; -- cgit v1.2.3