ecc: Check the input length for the point.
060c378c050e
Actions

Description

ecc: Check the input length for the point.

* cipher/ecc-misc.c (_gcry_ecc_mont_decodepoint): Check the length
of valid point representation.

In the use case of GnuPG, ECDH decryption for anonymous recipient may
try to decrypt with different curves. When the input data of
ephemeral key does not match one of the private key, it should return
GPG_ERR_INV_OBJ.

Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>

Details

Provenance

• gniibe

Authored on Apr 27 2021, 10:24 AM

Parents

rCe866c01e645d: keccak: add hash_buffers functions for SHAKE128 & SHAKE256

Branches

Unknown

Tags

Unknown

Event Timeline

• gniibe committed rC060c378c050e: ecc: Check the input length for the point. (authored by • gniibe).Apr 27 2021, 10:24 AM

Can you please port this also to 1.8?

Backported in rC3f48e3ea37ad: ecc: Check the input length for the point..

• gniibe mentioned this in rC5f814e8a4968: ecc: Fix the input length check for Montgomery curve..May 6 2021, 6:13 AM

• gniibe mentioned this in rC3f48e3ea37ad: ecc: Check the input length for the point..Jun 3 2021, 7:08 PM

• werner mentioned this in rC5632fa359a8c: ecc: Check the input length for the point..Aug 22 2021, 3:23 PM

Changes (1)

Path

Size

cipher/

ecc-misc.c

rC060c378c050e

View Options