CVSROOT: /cvs
Module name: src
Changes by: js...@cvs.openbsd.org 2015/09/13 05:49:44
Modified files:
lib/libssl/src/crypto/ecdh: ecdh.h ech_err.c ech_ossl.c
Log message:
Check ECDH output buffer length and avoid truncation.
Currently, if you call ECDH_compute_key() it will silently truncate the
resulting key if the output buffer is less than the key size. Instead,
detect this condition and return an error. If the buffer provided is larger
than the key length, zero the remainder.
ok beck@ miod@ "+ shivers"
