Gilles Peskine b00b0da452 RSA PSS: fix first byte check for keys of size 8N+1 ...

For a key of size 8N+1, check that the first byte after applying the
public key operation is 0 (it could have been 1 instead). The code was
incorrectly doing a no-op check instead, which led to invalid
signatures being accepted. Not a security flaw, since you would need the
private key to craft such an invalid signature, but a bug nonetheless.

2017-10-19 15:23:49 +02:00

..

data_files

RSA: Fix buffer overflow in PSS signature verification

2017-10-17 19:01:38 +02:00

git-scripts

Move the git scripts to correct path

2017-07-27 21:44:34 +01:00

scripts

Allow comments in test data files

2017-10-06 11:58:50 +01:00

suites

RSA PSS: fix first byte check for keys of size 8N+1

2017-10-19 15:23:49 +02:00

.gitignore

Move some ignore patterns to subdirectories

2015-01-28 15:33:23 +00:00

CMakeLists.txt

Remove need for elevated command line in Windows

2017-02-15 09:08:26 +00:00

compat.sh

Allow SHA-1 in test scripts

2017-06-06 18:44:14 +02:00

Descriptions.txt

Add selftest program to the list of tests

2014-04-04 16:33:01 +02:00

Makefile

Clean up of formatting, and potential integer overflow fix

2016-10-13 13:51:13 +01:00

ssl-opt.sh

Remove use of GNU sed features from ssl-opt.sh

2017-10-06 11:59:13 +01:00