artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 646fc28) | patch
Cap the size of numbers we check for primality
authortb <tb@openbsd.org>
Thu, 20 Jul 2023 06:26:27 +0000 (06:26 +0000)
committertb <tb@openbsd.org>
Thu, 20 Jul 2023 06:26:27 +0000 (06:26 +0000)
commit050d837a6cf064b603a4b238874fb149634381d3
treeb6c5effe7055cfb035c9760960c70d1f033f97f7tree | snapshot
parent646fc28444d8804fc8acf76257608fab5f43c05ccommit | diff
Cap the size of numbers we check for primality

We refuse to generate RSA keys larger than 16k and DH keys larger than 10k.
Primality checking with adversarial input is a DoS vector, so simply don't
do this. Introduce a cap of 32k for numbers we try to test for primality,
which should be more than large enough for use withing a non-toolkit crypto
library. This is one way of mitigating the DH_check()/EVP_PKEY_param_check()
issue.

ok jsing miod
lib/libcrypto/bn/bn_prime.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim