import openssl-0.9.7-beta1

author: markus <> 2002-09-05 12:51:50 +0000
committer: markus <> 2002-09-05 12:51:50 +0000
commit: 15b5d84f9da2ce4bfae8580e56e34a859f74ad71 (patch)
tree: bf939e82d7fd73cc8a01cf6959002209972091bc /src/lib/libcrypto/rsa/rsa_ssl.c
parent: 027351f729b9e837200dae6e1520cda6577ab930 (diff)
download: openbsd-15b5d84f9da2ce4bfae8580e56e34a859f74ad71.tar.gz
openbsd-15b5d84f9da2ce4bfae8580e56e34a859f74ad71.tar.bz2
openbsd-15b5d84f9da2ce4bfae8580e56e34a859f74ad71.zip
1 files changed, 19 insertions, 18 deletions
diff --git a/src/lib/libcrypto/rsa/rsa_ssl.c b/src/lib/libcrypto/rsa/rsa_ssl.c
index 9bcd4b2c03..ea72629494 100644
--- a/src/lib/libcrypto/rsa/rsa_ssl.c
+++ b/src/lib/libcrypto/rsa/rsa_ssl.c
@@ -58,15 +58,12 @@
 #include <stdio.h>
 #include "cryptlib.h"
-#include "bn.h"
+#include <openssl/bn.h>
-#include "rsa.h"
+#include <openssl/rsa.h>
-#include "rand.h"
+#include <openssl/rand.h>
-int RSA_padding_add_SSLv23(to,tlen,from,flen)
+int RSA_padding_add_SSLv23(unsigned char *to, int tlen,
-unsigned char *to;
+        const unsigned char *from, int flen)
-int tlen;
-unsigned char *from;
-int flen;
        {
        int i,j;
        unsigned char *p;
@@ -85,12 +82,14 @@ int flen;
        /* pad out with non-zero random data */
        j=tlen-3-8-flen;
-        RAND_bytes(p,j);
+        if (RAND_bytes(p,j) <= 0)
+                return(0);
        for (i=0; i<j; i++)
                {
                if (*p == '\0')
                        do      {
-                                RAND_bytes(p,1);
+                                if (RAND_bytes(p,1) <= 0)
+                                        return(0);
                                } while (*p == '\0');
                p++;
                }
@@ -103,14 +102,11 @@ int flen;
        return(1);
        }
-int RSA_padding_check_SSLv23(to,tlen,from,flen)
+int RSA_padding_check_SSLv23(unsigned char *to, int tlen,
-unsigned char *to;
+        const unsigned char *from, int flen, int num)
-int tlen;
-unsigned char *from;
-int flen;
        {
        int i,j,k;
-        unsigned char *p;
+        const unsigned char *p;
        p=from;
        if (flen < 10)
@@ -118,7 +114,7 @@ int flen;
                RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_DATA_TOO_SMALL);
                return(-1);
                }
-        if (*(p++) != 02)
+        if ((num != (flen+1)) || (*(p++) != 02))
                {
                RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_BLOCK_TYPE_IS_NOT_02);
                return(-1);
@@ -138,7 +134,7 @@ int flen;
                {
                if (p[k] !=  0x03) break;
                }
-        if (k == 0)
+        if (k == -1)
                {
                RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_SSLV3_ROLLBACK_ATTACK);
                return(-1);
@@ -146,6 +142,11 @@ int flen;
        i++; /* Skip over the '\0' */
        j-=i;
+        if (j > tlen)
+                {
+                RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_DATA_TOO_LARGE);
+                return(-1);
+                }
        memcpy(to,p,(unsigned int)j);
        return(j);
author	markus <>	2002-09-05 12:51:50 +0000
committer	markus <>	2002-09-05 12:51:50 +0000
commit	15b5d84f9da2ce4bfae8580e56e34a859f74ad71 (patch)
tree	bf939e82d7fd73cc8a01cf6959002209972091bc /src/lib/libcrypto/rsa/rsa_ssl.c
parent	027351f729b9e837200dae6e1520cda6577ab930 (diff)
download	openbsd-15b5d84f9da2ce4bfae8580e56e34a859f74ad71.tar.gz openbsd-15b5d84f9da2ce4bfae8580e56e34a859f74ad71.tar.bz2 openbsd-15b5d84f9da2ce4bfae8580e56e34a859f74ad71.zip