Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ssl/t1_lib.c: Add checks for the EVP_MD_get_size() #23943

Closed
wants to merge 1 commit into from
Closed

ssl/t1_lib.c: Add checks for the EVP_MD_get_size() #23943

wants to merge 1 commit into from

Conversation

JiangJias
Copy link
Contributor

Add checks for the EVP_MD_get_size() to avoid unexpected negative numbers.

Fixes: b362cca ("Security framework.")
Fixes: 0fe3db2 ("Use size of server key when selecting signature algorithm.")

Checklist
  • documentation is added or updated
  • tests are added or updated

@JiangJias
ssl/t1_lib.c: Add checks for the EVP_MD_get_size()
141bc1e 
Add checks for the EVP_MD_get_size() to avoid unexpected negative numbers.

Fixes: b362cca ("Security framework.")
Fixes: 0fe3db2 ("Use size of server key when selecting signature algorithm.")
Signed-off-by: Jiasheng Jiang <jiasheng@purdue.edu>
@t8m t8m added branch: master Merge to master branch approval: review pending This pull request needs review by a committer triaged: refactor The issue/pr requests/implements refactoring tests: exempted The PR is exempt from requirements for testing labels Mar 25, 2024
@tom-cosgrove-arm tom-cosgrove-arm added approval: done This pull request has the required number of approvals and removed approval: review pending This pull request needs review by a committer labels Mar 26, 2024
@openssl-machine openssl-machine removed the approval: done This pull request has the required number of approvals label Mar 27, 2024
@openssl-machine
Copy link
Collaborator

This pull request is ready to merge

@openssl-machine openssl-machine added the approval: ready to merge The 24 hour grace period has passed, ready to merge label Mar 27, 2024
@nhorman
Copy link
Contributor

nhorman commented Apr 2, 2024

merged, thank you for your contribution

@nhorman nhorman closed this Apr 2, 2024
openssl-machine pushed a commit that referenced this pull request Apr 2, 2024
@JiangJias @nhorman
ssl/t1_lib.c: Add checks for the EVP_MD_get_size()
9f6a487 
Add checks for the EVP_MD_get_size() to avoid unexpected negative numbers.

Fixes: b362cca ("Security framework.")
Fixes: 0fe3db2 ("Use size of server key when selecting signature algorithm.")
Signed-off-by: Jiasheng Jiang <jiasheng@purdue.edu>

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tom Cosgrove <tom.cosgrove@arm.com>
(Merged from #23943)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nhorman nhorman nhorman approved these changes

@t8m t8m t8m approved these changes

@tom-cosgrove-arm tom-cosgrove-arm tom-cosgrove-arm approved these changes

Assignees
No one assigned
Labels
approval: ready to merge The 24 hour grace period has passed, ready to merge branch: master Merge to master branch tests: exempted The PR is exempt from requirements for testing triaged: refactor The issue/pr requests/implements refactoring
Projects
Project Board
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@JiangJias @openssl-machine @nhorman @t8m @tom-cosgrove-arm