mirrors
/
rspamd
镜像自地址 https://github.com/vstakhov/rspamd.git
关注 1
点赞 0
派生 0
代码 工单 0 版本发布 159 百科 动态
浏览代码

[CritFix] Fix \0 processing when doing RSA sign

tags/1.8.2
Vsevolod Stakhov 5 年前
父节点
01036d24ca
当前提交
03792148a1
共有 1 个文件被更改,包括 6 次插入4 次删除
分列视图 显示文件统计
  1. 6
    4
      src/lua/lua_rsa.c

+ 6
- 4
src/lua/lua_rsa.c 查看文件

@@ -609,14 +609,15 @@ lua_rsa_verify_memory (lua_State *L)
RSA *rsa;
rspamd_fstring_t *signature;
const gchar *data;
gsize sz;
gint ret;

rsa = lua_check_rsa_pubkey (L, 1);
signature = lua_check_rsa_sign (L, 2);
data = luaL_checkstring (L, 3);
data = luaL_checklstring (L, 3, &sz);

if (rsa != NULL && signature != NULL && data != NULL) {
ret = RSA_verify (NID_sha256, data, strlen (data),
ret = RSA_verify (NID_sha256, data, sz,
signature->str, signature->len, rsa);

if (ret == 0) {
@@ -651,14 +652,15 @@ lua_rsa_sign_memory (lua_State *L)
RSA *rsa;
rspamd_fstring_t *signature, **psig;
const gchar *data;
gsize sz;
gint ret;

rsa = lua_check_rsa_privkey (L, 1);
data = luaL_checkstring (L, 2);
data = luaL_checklstring (L, 2, &sz);

if (rsa != NULL && data != NULL) {
signature = rspamd_fstring_sized_new (RSA_size (rsa));
ret = RSA_sign (NID_sha256, data, strlen (data),
ret = RSA_sign (NID_sha256, data, sz,
signature->str, (guint *)&signature->len, rsa);

if (ret != 1) {

撰写 预览
正在加载...
取消
保存