summaryrefslogtreecommitdiff
path: root/usr/src/common/openssl/crypto/dsa/dsa_ossl.c
diff options
context:
space:
mode:
Diffstat (limited to 'usr/src/common/openssl/crypto/dsa/dsa_ossl.c')
-rw-r--r--usr/src/common/openssl/crypto/dsa/dsa_ossl.c12
1 files changed, 12 insertions, 0 deletions
diff --git a/usr/src/common/openssl/crypto/dsa/dsa_ossl.c b/usr/src/common/openssl/crypto/dsa/dsa_ossl.c
index 3fd8a35613..d6addc2ac1 100644
--- a/usr/src/common/openssl/crypto/dsa/dsa_ossl.c
+++ b/usr/src/common/openssl/crypto/dsa/dsa_ossl.c
@@ -304,6 +304,18 @@ static int dsa_do_verify(const unsigned char *dgst, int dgst_len, DSA_SIG *sig,
return -1;
}
+ if (BN_num_bits(dsa->q) != 160)
+ {
+ DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_BAD_Q_VALUE);
+ return -1;
+ }
+
+ if (BN_num_bits(dsa->p) > OPENSSL_DSA_MAX_MODULUS_BITS)
+ {
+ DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_MODULUS_TOO_LARGE);
+ return -1;
+ }
+
BN_init(&u1);
BN_init(&u2);
BN_init(&t1);
generated by cgit v1.2.3 (git 2.46.0) at 2025-12-06 06:44:36 +0000