[PATCH 2/2] cipher:dilithium: Check the label length by caller.
NIIBE Yutaka
gniibe at fsij.org
Fri Apr 10 03:45:46 CEST 2026
* cipher/dilithium.h (dilithium_keypair, dilithium_sign)
(dilithium_verify): Return gpg_err_code_t.
* cipher/dilithium.c (dilithium_keypair): Return gpg_err_code_t.
(dilithium_sign, dilithium_verify): Ditto. Check CTXLEN.
* cipher/pubkey-dilithium.c (mldsa_generate): Follow the change.
(mldsa_sign, mldsa_verify): Likewise.
--
Reported by Calif.io in collaboration with Claude and Anthropic
Research.
GnuPG-bug-id: 8208
Co-authored-by: Thai Duong <thai at calif.io>
Signed-off-by: NIIBE Yutaka <gniibe at fsij.org>
---
cipher/dilithium.c | 101 ++++++++++++++++++++++++++++----------
cipher/dilithium.h | 20 ++++----
cipher/pubkey-dilithium.c | 32 +++++-------
3 files changed, 99 insertions(+), 54 deletions(-)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0002-cipher-dilithium-Check-the-label-length-by-caller.patch
Type: text/x-patch
Size: 9268 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gcrypt-devel/attachments/20260410/5f86e245/attachment.bin>
More information about the Gcrypt-devel
mailing list