Skip to content
Browse files
Reject invalid PSS parameters.
Fix a bug where invalid PSS parameters are not rejected resulting in a
NULL pointer exception. This can be triggered during certificate
verification so could be a DoS attack against a client or a server
enabling client authentication.

Thanks to Brian Carpenter for reporting this issues.


Reviewed-by: Tim Hudson <>
  • Loading branch information
snhenson authored and mattcaswell committed Mar 19, 2015
1 parent 8106d61 commit 09f06923e636019c39c807cb59c481375e720556
Showing with 2 additions and 1 deletion.
  1. +2 −1 crypto/rsa/rsa_ameth.c
@@ -703,9 +703,10 @@ static int rsa_item_verify(EVP_MD_CTX *ctx, const ASN1_ITEM *it, void *asn,
return -1;
if (rsa_pss_to_ctx(ctx, NULL, sigalg, pkey))
if (rsa_pss_to_ctx(ctx, NULL, sigalg, pkey) > 0) {
/* Carry on */
return 2;
return -1;

0 comments on commit 09f0692

Please sign in to comment.