DSA: Check for sanity of input parameters

dsa_builtin_paramgen2 expects the L parameter to be greater than N, otherwise the generation will get stuck in an infinite loop. Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de> Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> (cherry picked from commit 3afd38b277a806b901e039c6ad281c5e5c97ef67) (Merged from https://github.com/openssl/openssl/pull/7493)
author: Vitezslav Cizek <vcizek@suse.com> 2018-10-25 13:53:26 +0200
committer: Dr. Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> 2018-11-14 13:09:41 +0100
commit: 84b4759dbd0d7917091d20cd78712a20afb57d9b (patch)
tree: 0fcdccfdfcbea5e445c3ed9b69d1d381e6c0a593
parent: b18162a7c9bbfb57112459a4d6631fa258fd8c0c (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/crypto/dsa/dsa_gen.c b/crypto/dsa/dsa_gen.c
index db52a38a18..e55d585890 100644
--- a/crypto/dsa/dsa_gen.c
+++ b/crypto/dsa/dsa_gen.c
@@ -435,6 +435,12 @@ int dsa_builtin_paramgen2(DSA *ret, size_t L, size_t N,
 
     EVP_MD_CTX_init(&mctx);
 
+    /* make sure L > N, otherwise we'll get trapped in an infinite loop */
+    if (L <= N) {
+        DSAerr(DSA_F_DSA_BUILTIN_PARAMGEN2, DSA_R_INVALID_PARAMETERS);
+        goto err;
+    }
+
     if (evpmd == NULL) {
         if (N == 160)
             evpmd = EVP_sha1();
author	Vitezslav Cizek <vcizek@suse.com>	2018-10-25 13:53:26 +0200
committer	Dr. Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com>	2018-11-14 13:09:41 +0100
commit	84b4759dbd0d7917091d20cd78712a20afb57d9b (patch)
tree	0fcdccfdfcbea5e445c3ed9b69d1d381e6c0a593
parent	b18162a7c9bbfb57112459a4d6631fa258fd8c0c (diff)