Fix a missing NULL check in dsa_builtin_paramgen

We should check the last BN_CTX_get() call to ensure that it isn't NULL before we try and use any of the allocated BIGNUMs. Issue reported by Shi Lei. Reviewed-by: N Richard Levitte <levitte@openssl.org>

Fix a missing NULL check in dsa_builtin_paramgen
We should check the last BN_CTX_get() call to ensure that it isn't NULL before we try and use any of the allocated BIGNUMs. Issue reported by Shi Lei. Reviewed-by: N Richard Levitte <levitte@openssl.org>
1ff7425d · Matt Caswell · f3ff481f · 1ff7425d
隐藏空白更改
内联并排

Showing with 3 addition and 0 deletion

crypto/dsa/dsa_gen.c crypto/dsa/dsa_gen.c +3 -0

未找到文件。
--- a/crypto/dsa/dsa_gen.c
+++ b/crypto/dsa/dsa_gen.c
@@ -100,6 +100,9 @@ int dsa_builtin_paramgen(DSA *ret, size_t bits, size_t qbits,
    p = BN_CTX_get(ctx);
    test = BN_CTX_get(ctx);

+    if (test == NULL)
+        goto err;
+
    if (!BN_lshift(test, BN_value_one(), bits - 1))
        goto err;