diff options
| author | Tomas Mraz <tomas@openssl.org> | 2021-11-19 15:16:53 +0100 |
|---|---|---|
| committer | Tomas Mraz <tomas@openssl.org> | 2021-11-23 15:28:27 +0100 |
| commit | b029591606a36e825a8a7c71a5163f9ade4f7c43 (patch) | |
| tree | 2d7fb6ff49633def1c123fc08626ece946f64a26 /providers | |
| parent | 8100a59fed1c985a3307c97af12cc8794bd93069 (diff) | |
rsa_signverify_init: Set the PARAMS after key is set
Also, default to unrestricted pss parameters until the key is set.
Fixes #17075
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/17080)
(cherry picked from commit eaae5d69eb5a8cd9c054b23cc388397cbb4ffb98)
Diffstat (limited to 'providers')
| -rw-r--r-- | providers/implementations/signature/rsa_sig.c | 16 |
1 files changed, 10 insertions, 6 deletions
diff --git a/providers/implementations/signature/rsa_sig.c b/providers/implementations/signature/rsa_sig.c index 7dcdf952a3..325e855333 100644 --- a/providers/implementations/signature/rsa_sig.c +++ b/providers/implementations/signature/rsa_sig.c @@ -190,6 +190,9 @@ static void *rsa_newctx(void *provctx, const char *propq) prsactx->libctx = PROV_LIBCTX_OF(provctx); prsactx->flag_allow_md = 1; prsactx->propq = propq_copy; + /* Maximum for sign, auto for verify */ + prsactx->saltlen = RSA_PSS_SALTLEN_AUTO; + prsactx->min_saltlen = -1; return prsactx; } @@ -406,9 +409,6 @@ static int rsa_signverify_init(void *vprsactx, void *vrsa, prsactx->operation = operation; - if (!rsa_set_ctx_params(prsactx, params)) - return 0; - /* Maximum for sign, auto for verify */ prsactx->saltlen = RSA_PSS_SALTLEN_AUTO; prsactx->min_saltlen = -1; @@ -462,9 +462,10 @@ static int rsa_signverify_init(void *vprsactx, void *vrsa, prsactx->saltlen = min_saltlen; /* call rsa_setup_mgf1_md before rsa_setup_md to avoid duplication */ - return rsa_setup_mgf1_md(prsactx, mgf1mdname, prsactx->propq) - && rsa_setup_md(prsactx, mdname, prsactx->propq) - && rsa_check_parameters(prsactx, min_saltlen); + if (!rsa_setup_mgf1_md(prsactx, mgf1mdname, prsactx->propq) + || !rsa_setup_md(prsactx, mdname, prsactx->propq) + || !rsa_check_parameters(prsactx, min_saltlen)) + return 0; } } @@ -474,6 +475,9 @@ static int rsa_signverify_init(void *vprsactx, void *vrsa, return 0; } + if (!rsa_set_ctx_params(prsactx, params)) + return 0; + return 1; } |