Bug ID: 6707274 DSA/RSA/DH PKCS#11 engine operations need to be resistant to structure reuse

Bug ID	6707274
Synopsis	DSA/RSA/DH PKCS#11 engine operations need to be resistant to structure reuse
State	10-Fix Delivered (Fix available in build)
Category:Subcategory	solaris-crypto:openssl
Keywords	rtiq_reviewed
Responsible Engineer	Vladimir Kotal
Reported Against	5.10
Duplicate Of
Introduced In	solaris_10
Commit to Fix	snv_93
Fixed In	snv_93
Release Fixed	solaris_nevada(snv_93) , solaris_10u7(s10u7_01) (Bug ID:2165125)
Related Bugs	6708420 , 6728886
Submit Date	27-May-2008
Last Update Date	3-July-2008
Description	Use of libssl can sometimes lead to reuse of DH keys in OpenSSL PKCS#11 engine. This can lead to incorrect session key values to be computed by pk11_DH_compute_key() because the check done in check_new_dh_key() is too weak. Pointer comparison is not enough when the addresses remain the same but the contents change. This could be either thanks to deliberate DH structure reuse or a side effect of heap allocator. The high level manifestation of this problem could be e.g. failed SSL handshakes because of invalid DH keypair used for session key computation.
Work Around	N/A
Comments	N/A

OpenSolaris