RT4002: check for NULL cipher in p12_crpt.c

The NULL cipher case can't actually happen because we have no EVP_PBE_CTL combinations where cipher_nid is -1 and keygen is PKCS12_PBE_keyivgen. But make the code more obviously correct. Reviewed-by: N Matt Caswell <matt@openssl.org>

RT4002: check for NULL cipher in p12_crpt.c
The NULL cipher case can't actually happen because we have no EVP_PBE_CTL combinations where cipher_nid is -1 and keygen is PKCS12_PBE_keyivgen. But make the code more obviously correct. Reviewed-by: N Matt Caswell <matt@openssl.org>
394f7b6f · Emilia Kasper · 25d6b340 · 394f7b6f
隐藏空白更改
内联并排

Showing with 3 addition and 0 deletion

crypto/pkcs12/p12_crpt.c crypto/pkcs12/p12_crpt.c +3 -0

未找到文件。
--- a/crypto/pkcs12/p12_crpt.c
+++ b/crypto/pkcs12/p12_crpt.c
@@ -76,6 +76,9 @@ int PKCS12_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen,
    unsigned char *salt;
    unsigned char key[EVP_MAX_KEY_LENGTH], iv[EVP_MAX_IV_LENGTH];

+    if (cipher == NULL)
+        return 0;
+
    /* Extract useful info from parameter */

    pbe = ASN1_TYPE_unpack_sequence(ASN1_ITEM_rptr(PBEPARAM), param);