openssl security fixes, diff from markus@, ok & "commit it" djm@

http://www.openssl.org/news/secadv_20060928.txt for more
author: pvalchev <pvalchev@openbsd.org> 2006-10-04 07:10:32 +0000
committer: pvalchev <pvalchev@openbsd.org> 2006-10-04 07:10:32 +0000
commit: ee1f122a7f1aa1b18c5a7868e2e1f6aebc126d33 (patch)
tree: da8a6539140cd3cd80f46a3f048137c68abdbd84 /lib/libcrypto/dsa/dsa_ossl.c
parent: Exit when asked to. OK by deraadt, spotted by lumpy. (diff)
download: wireguard-openbsd-ee1f122a7f1aa1b18c5a7868e2e1f6aebc126d33.tar.xz
wireguard-openbsd-ee1f122a7f1aa1b18c5a7868e2e1f6aebc126d33.zip
1 files changed, 12 insertions, 0 deletions
diff --git a/lib/libcrypto/dsa/dsa_ossl.c b/lib/libcrypto/dsa/dsa_ossl.c
index 12509a70833..5de5fc7e91a 100644
--- a/lib/libcrypto/dsa/dsa_ossl.c
+++ b/lib/libcrypto/dsa/dsa_ossl.c
@@ -274,6 +274,18 @@ static int dsa_do_verify(const unsigned char *dgst, int dgst_len, DSA_SIG *sig,
 		return -1;
 		}
 
+	if (BN_num_bits(dsa->q) != 160)
+		{
+		DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_BAD_Q_VALUE);
+		return -1;
+		}
+
+	if (BN_num_bits(dsa->p) > OPENSSL_DSA_MAX_MODULUS_BITS)
+		{
+		DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_MODULUS_TOO_LARGE);
+		return -1;
+		}
+
 	BN_init(&u1);
 	BN_init(&u2);
 	BN_init(&t1);
author	pvalchev <pvalchev@openbsd.org>	2006-10-04 07:10:32 +0000
committer	pvalchev <pvalchev@openbsd.org>	2006-10-04 07:10:32 +0000
commit	ee1f122a7f1aa1b18c5a7868e2e1f6aebc126d33 (patch)
tree	da8a6539140cd3cd80f46a3f048137c68abdbd84 /lib/libcrypto/dsa/dsa_ossl.c
parent	Exit when asked to. OK by deraadt, spotted by lumpy. (diff)
download	wireguard-openbsd-ee1f122a7f1aa1b18c5a7868e2e1f6aebc126d33.tar.xz wireguard-openbsd-ee1f122a7f1aa1b18c5a7868e2e1f6aebc126d33.zip