diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-03-02 11:18:12 +0100 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-03-02 14:46:05 +0100 |
commit | 7ac0e16bde3b54ed6b6f435a88f180b64056f9f7 (patch) | |
tree | 15aa82cfc2a0c7170587f674ab3ad082b51a7660 /lib/x509/privkey.c | |
parent | 8bc71dc0ed272c10b6430a678858b8e973828cf8 (diff) | |
download | gnutls-7ac0e16bde3b54ed6b6f435a88f180b64056f9f7.tar.gz |
_gnutls_find_rsa_pss_salt_size: add a validity check for salt size
That is, in order to reject invalid parameters.
Resolves #402
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'lib/x509/privkey.c')
-rw-r--r-- | lib/x509/privkey.c | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/lib/x509/privkey.c b/lib/x509/privkey.c index badeb945df..d4be99ef05 100644 --- a/lib/x509/privkey.c +++ b/lib/x509/privkey.c @@ -1682,8 +1682,13 @@ gnutls_x509_privkey_generate2(gnutls_x509_privkey_t key, goto cleanup; } - key->params.spki.salt_size = - _gnutls_find_rsa_pss_salt_size(bits, me, 0); + ret = _gnutls_find_rsa_pss_salt_size(bits, me, 0); + if (ret < 0) { + gnutls_assert(); + goto cleanup; + } + + key->params.spki.salt_size = ret; } ret = _gnutls_pk_generate_keys(algo, bits, &key->params, 0); |