RSA Signatures with PSS padding cause a SIGSEGV #2

pushkarnk · 2024-05-27T15:30:16Z

If an MGF1-Digest is configured for a RSA-PSS signature, sv_init() crashes with the following stack:

#0  0x00007ffff7ea5ec5 in EVP_MD_is_a () from /usr/lib/x86_64-linux-gnu/ossl-modules/fips.so
#1  0x00007ffff7e4b4d1 in rsa_check_padding () from /usr/lib/x86_64-linux-gnu/ossl-modules/fips.so
#2  0x00007ffff7e4b566 in rsa_setup_mgf1_md () from /usr/lib/x86_64-linux-gnu/ossl-modules/fips.so
#3  0x00007ffff7e4be61 in rsa_set_ctx_params () from /usr/lib/x86_64-linux-gnu/ossl-modules/fips.so
#4  0x00007ffff7e4c1f8 in rsa_signverify_init () from /usr/lib/x86_64-linux-gnu/ossl-modules/fips.so
#5  0x00007ffff7e4cf5c in rsa_digest_sign_init () from /usr/lib/x86_64-linux-gnu/ossl-modules/fips.so
#6  0x00007ffff7815779 in ?? () from /lib/x86_64-linux-gnu/libcrypto.so.3
#7  0x00007ffff7815d1e in EVP_DigestSignInit_ex () from /lib/x86_64-linux-gnu/libcrypto.so.3
#8  0x00007ffff7fbb23d in sv_init () from /home/pushkarnk/work/sprint24/5206/openssl-fips-jni-wrapper/build/bin/libjssl.so
#9  0x000055555555538f in test_rsa_sign_and_verify ()
#10 0x0000555555555575 in main ()

This is likely to be an openssl bug. Refer this to reproduce.

The text was updated successfully, but these errors were encountered:

pushkarnk added the bug Something isn't working label May 27, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

RSA Signatures with PSS padding cause a SIGSEGV #2

RSA Signatures with PSS padding cause a SIGSEGV #2

pushkarnk commented May 27, 2024 •

edited

Loading

RSA Signatures with PSS padding cause a SIGSEGV #2

RSA Signatures with PSS padding cause a SIGSEGV #2

Comments

pushkarnk commented May 27, 2024 • edited Loading

pushkarnk commented May 27, 2024 •

edited

Loading