summaryrefslogtreecommitdiff
path: root/src/lib/libtls/tls_verify.c
diff options
context:
space:
mode:
authorjsing <>2023-03-07 06:28:36 +0000
committerjsing <>2023-03-07 06:28:36 +0000
commit9a319239aa9791b8d59bd245ae1eb82cd3d46720 (patch)
tree06b1106ed32703f0e6d26673ee1c52d2e310c0ef /src/lib/libtls/tls_verify.c
parent0997c0b71b5d3563776da385640073eeb53919be (diff)
downloadopenbsd-9a319239aa9791b8d59bd245ae1eb82cd3d46720.tar.gz
openbsd-9a319239aa9791b8d59bd245ae1eb82cd3d46720.tar.bz2
openbsd-9a319239aa9791b8d59bd245ae1eb82cd3d46720.zip
Limit bn_mul_mont() usage to sizes less than or equal to 8192 bits.
The assembly bn_mul_mont() implementations effectively use alloca() to allocate space for computation (at up to 8x the input size), without any limitation. This means that sufficiently large inputs lead to the stack being blown. Prevent this by using the C based implementation instead. Thanks to Jiayi Lin <jlin139 at asu dot edu> for reporting this to us. ok beck@ tb@
Diffstat (limited to 'src/lib/libtls/tls_verify.c')
0 files changed, 0 insertions, 0 deletions