Revision - 40c2812 - Premaster secret handling fixes – ENEA Mirror of the Software Heritage archive

Revision 40c2812f5656b1c78fa18b14c264fd48421c2d24 authored by Adam Langley on 16 December 2014, 13:03:47 UTC, committed by Emilia Kasper on 17 December 2014, 13:04:14 UTC

Premaster secret handling fixes

From BoringSSL
- Send an alert when the client key exchange isn't correctly formatted.
- Reject overly short RSA ciphertexts to avoid a (benign) out-of-bounds memory access.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
(cherry picked from commit 4aecfd4d9f366c849c9627ab666d1b1addc024e6)

1 parent 2e3e3d2

Files
Changes

Permalinks

CAssdsa.cnf

#
# SSLeay example configuration file.
# This is mostly being used for generation of certificate requests.
#
# hacked by iang to do DSA certs - CA

RANDFILE              = ./.rnd

####################################################################
[ req ]
distinguished_name    = req_distinguished_name
encrypt_rsa_key               = no

[ req_distinguished_name ]
countryName                   = Country Name (2 letter code)
countryName_default           = ES
countryName_value             = ES

organizationName              = Organization Name (eg, company)
organizationName_value                = Hermanos Locos

commonName                    = Common Name (eg, YOUR name)
commonName_value              = Hermanos Locos CA

Showing with 0 additions and 0 deletions (0 / 0 diffs computed)

Computing file changes ...