]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: ebce794) | patch
crypto/rsa: fix out-of-bound access with short session keys.
authorAdam Langley <agl@golang.org>
Wed, 2 Jul 2014 22:28:57 +0000 (15:28 -0700)
committerAdam Langley <agl@golang.org>
Wed, 2 Jul 2014 22:28:57 +0000 (15:28 -0700)
commit372f399e00693b1d49bc1243feb66f2c9bf0dd5c
treee9c61a85cce03f28c793a78cf16084f7b9d0e73dtree
parentebce79446dad6251f1d71b1e133a420ff6e8093ccommit | diff
crypto/rsa: fix out-of-bound access with short session keys.

Thanks to Cedric Staub for noting that a short session key would lead
to an out-of-bounds access when conditionally copying the too short
buffer over the random session key.

LGTM=davidben, bradfitz
R=davidben, bradfitz
CC=golang-codereviews
https://golang.org/cl/102670044
src/pkg/crypto/rsa/pkcs1v15.go diff | blob | history
src/pkg/crypto/rsa/pkcs1v15_test.go diff | blob | history
src/pkg/crypto/subtle/constant_time.go diff | blob | history
Go GOST TLS 1.3