Introduce limits to prevent malicious keys being able to

cause a denial of service. (CVE-2006-2940) [Steve Henson, Bodo Moeller]
author: Bodo Möller <bodo@openssl.org> 2006-09-28 13:45:34 +0000
committer: Bodo Möller <bodo@openssl.org> 2006-09-28 13:45:34 +0000
commit: 5e3225cc44ebdce3a88d04a627e975b3e76a6f9a (patch)
tree: 40fc0efbaf2e75215453e71a5b6b8b326d3bee0f /crypto/dsa/dsa_ossl.c
parent: 61118caa86ecf8acba2c6d17caabeed9022acf9d (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/crypto/dsa/dsa_ossl.c b/crypto/dsa/dsa_ossl.c
index 7a66bcebb5..2fab8dc65a 100644
--- a/crypto/dsa/dsa_ossl.c
+++ b/crypto/dsa/dsa_ossl.c
@@ -303,6 +303,18 @@ static int dsa_do_verify(const unsigned char *dgst, int dgst_len, DSA_SIG *sig,
 		return -1;
 		}
 
+	if (BN_num_bits(dsa->q) != 160)
+		{
+		DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_BAD_Q_VALUE);
+		return -1;
+		}
+
+	if (BN_num_bits(dsa->p) > OPENSSL_DSA_MAX_MODULUS_BITS)
+		{
+		DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_MODULUS_TOO_LARGE);
+		return -1;
+		}
+
 	BN_init(&u1);
 	BN_init(&u2);
 	BN_init(&t1);
author	Bodo Möller <bodo@openssl.org>	2006-09-28 13:45:34 +0000
committer	Bodo Möller <bodo@openssl.org>	2006-09-28 13:45:34 +0000
commit	5e3225cc44ebdce3a88d04a627e975b3e76a6f9a (patch)
tree	40fc0efbaf2e75215453e71a5b6b8b326d3bee0f /crypto/dsa/dsa_ossl.c
parent	61118caa86ecf8acba2c6d17caabeed9022acf9d (diff)