WolfSSL
/
wolfssh
mirror of https://github.com/wolfSSL/wolfssh.git
1
0
Fork 0
Code Issues Releases Wiki Activity

Public key authentication 

1. Remove a forced test value for a sigSz in PrepareUserAuthRequestEcc.
2. When building the PrepareUserAuthRequest message for ECC user public
keys, the temporary buffer for the signature should be the size of a
signature for prime256 signatures, not 512 bytes.
pull/169/head
John Safranek 2019-06-07 16:05:10 -07:00
parent 56616d3416
commit 3db449d736
1 changed files with 1 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/internal.c
View File

@ -6918,7 +6918,6 @@ static int PrepareUserAuthRequestEcc(WOLFSSH* ssh, word32* payloadSz,
if (ret == WS_SUCCESS) {
if (authData->sf.publicKey.hasSignature) {
int sigSz = wc_ecc_sig_size(&keySig->ks.ecc.key);
sigSz = 64;
if (sigSz >= 0) {
*payloadSz += (LENGTH_SZ * 5) + (word32)sigSz +
@ -6949,7 +6948,7 @@ static int BuildUserAuthRequestEcc(WOLFSSH* ssh,
int ret = WS_SUCCESS;
byte* r;
byte* s;
byte sig[512];
byte sig[72]; /* wc_ecc_sig_size() for a prime256 key. */
word32 sigSz = sizeof(sig), rSz, sSz;
if (ssh == NULL || output == NULL || idx == NULL || authData == NULL ||