Merge pull request #1443 from cconlon/dhagree

check z against 1 in wc_DhAgree()
2025-08-01 19:54:40 +02:00 · 2018-03-17 20:15:31 -07:00
parent 250cd3b7eb 3118c8826b
commit 465f1d491f
1 changed files with 4 additions and 0 deletions
--- a/wolfcrypt/src/dh.c
+++ b/wolfcrypt/src/dh.c
@@ -1081,6 +1081,10 @@ static int wc_DhAgree_Sync(DhKey* key, byte* agree, word32* agreeSz,
    if (ret == 0 && mp_exptmod(&y, &x, &key->p, &z) != MP_OKAY)
        ret = MP_EXPTMOD_E;
    /* make sure z is not one (SP800-56A, 5.7.1.1) */
    if (ret == 0 && (mp_cmp_d(&z, 1) == MP_EQ))
        ret = MP_VAL;
    if (ret == 0 && mp_to_unsigned_bin(&z, agree) != MP_OKAY)
        ret = MP_TO_E;