Home Esplora Aiuto
Registrati Accedi
Apq
/
winscp
mirror da https://github.com/winscp/winscp.git
1
0
Forka 0
File Problemi 0 Wiki
Sfoglia il codice sorgente

Merge branch 'thirdparty'

Source commit: 7ea3c0c8599d29e827477c7bbd6890a061c146f8
Martin Prikryl 2 anni fa
parent
4fbfc99566 7ea1a3634d
commit
fdf0d072d3
6 ha cambiato i file con 29 aggiunte e 9 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 17 3
      libs/openssl/crypto/dh/dh_check.c
  2. 2 1
      libs/openssl/crypto/dh/dh_err.c
  3. 2 1
      libs/openssl/crypto/err/openssl.txt
  4. 4 1
      libs/openssl/include/openssl/dh.h
  5. 2 1
      libs/openssl/include/openssl/dherr.h
  6. 2 2
      libs/openssl/include/openssl/opensslv.h

+ 17 - 3
libs/openssl/crypto/dh/dh_check.c
Vedi File 

@@ -1,5 +1,5 @@
 
 /*
 
- * Copyright 1995-2019 The OpenSSL Project Authors. All Rights Reserved.
 
+ * Copyright 1995-2023 The OpenSSL Project Authors. All Rights Reserved.
 
  *
 
  * Licensed under the OpenSSL license (the "License").  You may not use
 
  * this file except in compliance with the License.  You can obtain a copy
 
@@ -97,10 +97,17 @@ int DH_check_ex(const DH *dh)
 
 
 int DH_check(const DH *dh, int *ret)
 
 {
 
-    int ok = 0, r;
 
+    int ok = 0, r, q_good = 0;
 
     BN_CTX *ctx = NULL;
 
     BIGNUM *t1 = NULL, *t2 = NULL;
 
 
+    /* Don't do any checks at all with an excessively large modulus */
 
+    if (BN_num_bits(dh->p) > OPENSSL_DH_CHECK_MAX_MODULUS_BITS) {
 
+        DHerr(DH_F_DH_CHECK, DH_R_MODULUS_TOO_LARGE);
 
+        *ret = DH_CHECK_P_NOT_PRIME;
 
+        return 0;
 
+    }
 
+
 
     if (!DH_check_params(dh, ret))
 
         return 0;
 
 
@@ -113,7 +120,14 @@ int DH_check(const DH *dh, int *ret)
 
     if (t2 == NULL)
 
         goto err;
 
 
-    if (dh->q) {
 
+    if (dh->q != NULL) {
 
+        if (BN_ucmp(dh->p, dh->q) > 0)
 
+            q_good = 1;
 
+        else
 
+            *ret |= DH_CHECK_INVALID_Q_VALUE;
 
+    }
 
+
 
+    if (q_good) {
 
         if (BN_cmp(dh->g, BN_value_one()) <= 0)
 
             *ret |= DH_NOT_SUITABLE_GENERATOR;
 
         else if (BN_cmp(dh->g, dh->p) >= 0)

+ 2 - 1
libs/openssl/crypto/dh/dh_err.c
Vedi File 

@@ -1,6 +1,6 @@
 
 /*
 
  * Generated by util/mkerr.pl DO NOT EDIT
 
- * Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved.
 
+ * Copyright 1995-2023 The OpenSSL Project Authors. All Rights Reserved.
 
  *
 
  * Licensed under the OpenSSL license (the "License").  You may not use
 
  * this file except in compliance with the License.  You can obtain a copy
 
@@ -18,6 +18,7 @@ static const ERR_STRING_DATA DH_str_functs[] = {
 
     {ERR_PACK(ERR_LIB_DH, DH_F_DHPARAMS_PRINT_FP, 0), "DHparams_print_fp"},
 
     {ERR_PACK(ERR_LIB_DH, DH_F_DH_BUILTIN_GENPARAMS, 0),
 
      "dh_builtin_genparams"},
 
+    {ERR_PACK(ERR_LIB_DH, DH_F_DH_CHECK, 0), "DH_check"},
 
     {ERR_PACK(ERR_LIB_DH, DH_F_DH_CHECK_EX, 0), "DH_check_ex"},
 
     {ERR_PACK(ERR_LIB_DH, DH_F_DH_CHECK_PARAMS_EX, 0), "DH_check_params_ex"},
 
     {ERR_PACK(ERR_LIB_DH, DH_F_DH_CHECK_PUB_KEY_EX, 0), "DH_check_pub_key_ex"},

+ 2 - 1
libs/openssl/crypto/err/openssl.txt
Vedi File 

@@ -1,4 +1,4 @@
 
-# Copyright 1999-2021 The OpenSSL Project Authors. All Rights Reserved.
 
+# Copyright 1999-2023 The OpenSSL Project Authors. All Rights Reserved.
 
 #
 
 # Licensed under the OpenSSL license (the "License").  You may not use
 
 # this file except in compliance with the License.  You can obtain a copy
 
@@ -401,6 +401,7 @@ CT_F_SCT_SET_VERSION:104:SCT_set_version
 
 DH_F_COMPUTE_KEY:102:compute_key
 
 DH_F_DHPARAMS_PRINT_FP:101:DHparams_print_fp
 
 DH_F_DH_BUILTIN_GENPARAMS:106:dh_builtin_genparams
 
+DH_F_DH_CHECK:126:DH_check
 
 DH_F_DH_CHECK_EX:121:DH_check_ex
 
 DH_F_DH_CHECK_PARAMS_EX:122:DH_check_params_ex
 
 DH_F_DH_CHECK_PUB_KEY_EX:123:DH_check_pub_key_ex

+ 4 - 1
libs/openssl/include/openssl/dh.h
Vedi File 

@@ -1,5 +1,5 @@
 
 /*
 
- * Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved.
 
+ * Copyright 1995-2023 The OpenSSL Project Authors. All Rights Reserved.
 
  *
 
  * Licensed under the OpenSSL license (the "License").  You may not use
 
  * this file except in compliance with the License.  You can obtain a copy
 
@@ -29,6 +29,9 @@ extern "C" {
 
 # ifndef OPENSSL_DH_MAX_MODULUS_BITS
 
 #  define OPENSSL_DH_MAX_MODULUS_BITS    10000
 
 # endif
 
+# ifndef OPENSSL_DH_CHECK_MAX_MODULUS_BITS
 
+#  define OPENSSL_DH_CHECK_MAX_MODULUS_BITS  32768
 
+# endif
 
 
 # define OPENSSL_DH_FIPS_MIN_MODULUS_BITS 1024

+ 2 - 1
libs/openssl/include/openssl/dherr.h
Vedi File 

@@ -1,6 +1,6 @@
 
 /*
 
  * Generated by util/mkerr.pl DO NOT EDIT
 
- * Copyright 1995-2019 The OpenSSL Project Authors. All Rights Reserved.
 
+ * Copyright 1995-2023 The OpenSSL Project Authors. All Rights Reserved.
 
  *
 
  * Licensed under the OpenSSL license (the "License").  You may not use
 
  * this file except in compliance with the License.  You can obtain a copy
 
@@ -30,6 +30,7 @@ int ERR_load_DH_strings(void);
 
 #  define DH_F_COMPUTE_KEY                                 102
 
 #  define DH_F_DHPARAMS_PRINT_FP                           101
 
 #  define DH_F_DH_BUILTIN_GENPARAMS                        106
 
+#  define DH_F_DH_CHECK                                    126
 
 #  define DH_F_DH_CHECK_EX                                 121
 
 #  define DH_F_DH_CHECK_PARAMS_EX                          122
 
 #  define DH_F_DH_CHECK_PUB_KEY_EX                         123

+ 2 - 2
libs/openssl/include/openssl/opensslv.h
Vedi File 

@@ -39,8 +39,8 @@ extern "C" {
 
  * (Prior to 0.9.5a beta1, a different scheme was used: MMNNFFRBB for
 
  *  major minor fix final patch/beta)
 
  */
 
-# define OPENSSL_VERSION_NUMBER  0x1010115fL
 
-# define OPENSSL_VERSION_TEXT    "OpenSSL 1.1.1u  30 May 2023"
 
+# define OPENSSL_VERSION_NUMBER  0x1010116fL
 
+# define OPENSSL_VERSION_TEXT    "OpenSSL 1.1.1v  1 Aug 2023"
 
 
 /*-
 
  * The macros below are to be used for shared library (.so, .dll, ...)