[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-313-g23b7290
by NIIBE Yutaka
cvs at cvs.gnupg.org
Tue Feb 9 10:26:00 CET 2016
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".
The branch, master has been updated
via 23b72901f8a5ba9a78485b235c7a917fbc8faae0 (commit)
from 8353884bc65c820d5bcacaf1ac23cdee72091a09 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 23b72901f8a5ba9a78485b235c7a917fbc8faae0
Author: NIIBE Yutaka <gniibe at fsij.org>
Date: Wed Nov 25 08:41:41 2015 +0900
ecc: input validation on ECDH.
* cipher/ecc.c (ecc_decrypt_raw): Validate the point.
--
Signed-off-by: NIIBE Yutaka <gniibe at fsij.org>
(forward port from LIBGCRYPT-1-6-BRANCH
commit 28eb424e4427b320ec1c9c4ce56af25d495230bd)
diff --git a/cipher/ecc.c b/cipher/ecc.c
index 7d6ad94..b861925 100644
--- a/cipher/ecc.c
+++ b/cipher/ecc.c
@@ -1570,6 +1570,12 @@ ecc_decrypt_raw (gcry_sexp_t *r_plain, gcry_sexp_t s_data, gcry_sexp_t keyparms)
if (DBG_CIPHER)
log_printpnt ("ecc_decrypt kG", &kG, NULL);
+ if (!_gcry_mpi_ec_curve_point (&kG, ec))
+ {
+ point_free (&kG);
+ return GPG_ERR_INV_DATA;
+ }
+
/* R = dkG */
_gcry_mpi_ec_mul_point (&R, sk.d, &kG, ec);
-----------------------------------------------------------------------
Summary of changes:
cipher/ecc.c | 6 ++++++
1 file changed, 6 insertions(+)
hooks/post-receive
--
The GNU crypto library
http://git.gnupg.org
_______________________________________________
Gnupg-commits mailing list
Gnupg-commits at gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-commits
More information about the Gcrypt-devel
mailing list