Add an assertion so that short-rsa2-key-crash at least avoids segfaulting

while we come up with a better solution. [originally from svn r5146]
2025-01-09 17:38:00 +00:00 · 2005-01-19 23:30:38 +00:00 · 2005-01-19 23:30:38 +00:00 · 37278b3bfc
commit 37278b3bfc
parent f1a22fb3cb
1 changed files with 1 additions and 0 deletions
--- a/sshrsa.c
+++ b/sshrsa.c
@ -802,6 +802,7 @@ static unsigned char *rsa2_sign(void *key, char *data, int datalen,
    SHA_Simple(data, datalen, hash);

    nbytes = (bignum_bitcount(rsa->modulus) - 1) / 8;
+    assert(1 <= nbytes - 20 - ASN1_LEN);
    bytes = snewn(nbytes, unsigned char);

    bytes[0] = 1;