966fe81f9b
Invalid parameters passed to the SRP code can be overrun an internal buffer. Add sanity check that g, A, B < N to SRP code. Thanks to Sean Devlin and Watson Ladd of Cryptography Services, NCC Group for reporting this issue. Reviewed-by: Kurt Roeckx <kurt@openssl.org> |
||
|---|---|---|
| .. | ||
| .cvsignore | ||
| Makefile | ||
| srp.h | ||
| srp_grps.h | ||
| srp_lcl.h | ||
| srp_lib.c | ||
| srp_vfy.c | ||
| srptest.c | ||