sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-07 00:01:49 -04:00
Code Issues Projects Releases Wiki Activity

check if RSA key is large enough to sign a chunk of data

Browse Source
This commit is contained in:
Martin Willi 2009-06-15 13:49:30 +02:00
parent e7227f0ba0
commit 3176e4421f
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/libstrongswan/plugins/gmp/gmp_rsa_private_key.c
View File

@ -248,6 +248,13 @@ static bool build_emsa_pkcs1_signature(private_gmp_rsa_private_key_t *this,
data = digestInfo; data = digestInfo;
} }
if (data.len > this->k - 3)
{
free(digestInfo.ptr);
DBG1("unable to sign %d bytes using a %dbit key", data.len, this->k * 8);
return FALSE;
}
/* build chunk to rsa-decrypt: /* build chunk to rsa-decrypt:
* EM = 0x00 || 0x01 || PS || 0x00 || T. * EM = 0x00 || 0x01 || PS || 0x00 || T.
* PS = 0xFF padding, with length to fill em * PS = 0xFF padding, with length to fill em