提交 0b789adc 编写于 作者: D Dr. Stephen Henson

PR: 2315

Use consistent calculation for PSS salt length.
上级 33d9c834
...@@ -588,7 +588,11 @@ static int rsa_item_sign(EVP_MD_CTX *ctx, const ASN1_ITEM *it, void *asn, ...@@ -588,7 +588,11 @@ static int rsa_item_sign(EVP_MD_CTX *ctx, const ASN1_ITEM *it, void *asn,
if (saltlen == -1) if (saltlen == -1)
saltlen = EVP_MD_size(sigmd); saltlen = EVP_MD_size(sigmd);
else if (saltlen == -2) else if (saltlen == -2)
{
saltlen = EVP_PKEY_size(pk) - EVP_MD_size(sigmd) - 2; saltlen = EVP_PKEY_size(pk) - EVP_MD_size(sigmd) - 2;
if (((EVP_PKEY_bits(pk) - 1) & 0x7) == 0)
saltlen--;
}
pss = RSA_PSS_PARAMS_new(); pss = RSA_PSS_PARAMS_new();
if (!pss) if (!pss)
goto err; goto err;
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册