limit rsa->e size to 64 bits

2025-06-26 18:17:32 +00:00 · 2018-02-17 19:41:44 +08:00 · 2018-02-17 19:41:44 +08:00 · 67111efdad
commit 67111efdad
parent 5fd677af76
1 changed files with 6 additions and 0 deletions
--- a/rsa.c
+++ b/rsa.c
@ -68,6 +68,12 @@ int buf_get_rsa_pub_key(buffer* buf, dropbear_rsa_key *key) {
 		goto out;
 	}

+	/* 64 bit is limit used by openssl, so we won't block any keys in the wild */
+	if (mp_count_bits(key->e) > 64) {
+		dropbear_log(LOG_WARNING, "RSA key bad e");
+		goto out;
+	}
+
 	TRACE(("leave buf_get_rsa_pub_key: success"))
 	ret = DROPBEAR_SUCCESS;
 out: