| commit | c03f8dfaa3a3e002963160231e50f4693508f918 | |
| author | Simon Josefsson <simon@josefsson.org> | |
| Fri, 8 Sep 2006 13:38:55 +0000 (8 13:38 +0000) | ||
| committer | Simon Josefsson <simon@josefsson.org> | |
| Fri, 8 Sep 2006 13:38:55 +0000 (8 13:38 +0000) | ||
| tree | 7401edf8e6fbeb1edf36f790806d06acc4cbaf35 | treesnapshot (tar.gz zip) |
| parent | c2a4db39bdca37697d197bebc918f872d7c58124 | commitdiff |
Make sure the digestAlgorithm.parameters field is empty, which it has
to be for the hashes we support. Otherwise, the field can encode
"garbage" that might be used to make the signature be a perfect cube,
similar (but not identical) to Bleichenbacher's Crypto 06 rump session
attack.
to be for the hashes we support. Otherwise, the field can encode
"garbage" that might be used to make the signature be a perfect cube,
similar (but not identical) to Bleichenbacher's Crypto 06 rump session
attack.
| lib/x509/verify.c | diffblobblamehistory |