Home Explore Help
Sign In
OWEALs
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
2
0
Fork 0
Files Issues 8 Wiki
Browse Source

RSA padding - no pad length check fix

Perform correct length check of input bytes based on bits in key in
wc_RsaPad_ex when no padding to be done.
Sean Parkinson 1 year ago
parent
47aad3fedb
commit
2a33f24dc9
1 changed files with 5 additions and 1 deletions
Split View Show Diff Stats
  1. 5 1
      wolfcrypt/src/rsa.c

+ 5 - 1
wolfcrypt/src/rsa.c
View File 

@@ -1580,11 +1580,14 @@ int wc_RsaPad_ex(const byte* input, word32 inputLen, byte* pkcsBlock,
 
 
     #ifdef WC_RSA_NO_PADDING
 
         case WC_RSA_NO_PAD:
 
+        {
 
+            int bytes = (bits + WOLFSSL_BIT_SIZE - 1) / WOLFSSL_BIT_SIZE;
 
+
 
             WOLFSSL_MSG("wolfSSL Using NO padding");
 
 
             /* In the case of no padding being used check that input is exactly
 
              * the RSA key length */
 
-            if (bits <= 0 || inputLen != ((word32)bits/WOLFSSL_BIT_SIZE)) {
 
+            if ((bits <= 0) || (inputLen != (word32)bytes)) {
 
                 WOLFSSL_MSG("Bad input size");
 
                 ret = RSA_PAD_E;
 
             }
 
@@ -1593,6 +1596,7 @@ int wc_RsaPad_ex(const byte* input, word32 inputLen, byte* pkcsBlock,
 
                 ret = 0;
 
             }
 
             break;
 
+        }
 
     #endif
 
 
         default: