Don't call memcpy with NULL as source

Calling it with lenght 0 and NULL as source is undefined behaviour. Reviewed-by: N Rich Salz <rsalz@openssl.org> GH: #2089

Don't call memcpy with NULL as source
Calling it with lenght 0 and NULL as source is undefined behaviour. Reviewed-by: N Rich Salz <rsalz@openssl.org> GH: #2089
eeab356c · Kurt Roeckx · 1ea01427 · eeab356c
隐藏空白更改
内联并排

Showing with 2 addition and 1 deletion

crypto/bn/bn_intern.c crypto/bn/bn_intern.c +2 -1

未找到文件。
--- a/crypto/bn/bn_intern.c
+++ b/crypto/bn/bn_intern.c
@@ -167,7 +167,8 @@ int bn_copy_words(BN_ULONG *out, const BIGNUM *in, int size)
        return 0;

    memset(out, 0, sizeof(*out) * size);
-    memcpy(out, in->d, sizeof(*out) * in->top);
+    if (in->d != NULL)
+        memcpy(out, in->d, sizeof(*out) * in->top);
    return 1;
 }