]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: b0454f5) | patch
[release-branch.go1.3] crypto/rsa: fix out-of-bound access with short session keys.
authorAndrew Gerrand <adg@golang.org>
Mon, 11 Aug 2014 23:45:11 +0000 (09:45 +1000)
committerAndrew Gerrand <adg@golang.org>
Mon, 11 Aug 2014 23:45:11 +0000 (09:45 +1000)
commit78a4cf7f39dd1bd3debedc85d736b35aabec7d5b
treee81936cb8bcdc6b7691b3ceeff8731475ab2f252tree
parentb0454f5d2b6acfb291d44a7281b0aef461ac6807commit | diff
[release-branch.go1.3] crypto/rsa: fix out-of-bound access with short session keys.

««« CL 102670044 / c5f72a685e25
crypto/rsa: fix out-of-bound access with short session keys.

Thanks to Cedric Staub for noting that a short session key would lead
to an out-of-bounds access when conditionally copying the too short
buffer over the random session key.

LGTM=davidben, bradfitz
R=davidben, bradfitz
CC=golang-codereviews
https://golang.org/cl/102670044
»»»

TBR=rsc
CC=golang-codereviews
https://golang.org/cl/128930044
src/pkg/crypto/rsa/pkcs1v15.go diff | blob | history
src/pkg/crypto/rsa/pkcs1v15_test.go diff | blob | history
src/pkg/crypto/subtle/constant_time.go diff | blob | history
Go GOST TLS 1.3