src - OpenBSD base system

diff options


context:
space:
mode:

author	Damien Miller <djm@cvs.openbsd.org>	2010-03-04 11:02:43 +0000
committer	Damien Miller <djm@cvs.openbsd.org>	2010-03-04 11:02:43 +0000
commit	4d4516ac84ea5d9fff386845d28794386ab1a633 (patch)
tree	c24cc56d4d64f20413190e63c2822392767e5391 /lib
parent	591312df92a35c18abb3eb4279f7a6d10f75ada9 (diff)

cherrypick patch from OpenSSL 0.9.8m:

*) Always check bn_wexpend() return values for failure. (CVE-2009-3245) [Martin Olsson, Neel Mehta]

Diffstat (limited to 'lib')

-rw-r--r--

lib/libcrypto/bn/bn_div.c

-rw-r--r--

lib/libcrypto/bn/bn_gf2m.c

-rw-r--r--

lib/libcrypto/ec/ec2_smpl.c

3 files changed, 9 insertions, 6 deletions

diff --git a/lib/libcrypto/bn/bn_div.c b/lib/libcrypto/bn/bn_div.c
index 1e8e57626be..d6ddc9cbe32 100644
--- a/lib/libcrypto/bn/bn_div.c
+++ b/lib/libcrypto/bn/bn_div.c

@@ -102,7 +102,7 @@ int BN_div(BIGNUM *dv, BIGNUM *rem, const BIGNUM *m, const BIGNUM *d,

/* The next 2 are needed so we can do a dv->d[0]|=1 later

* since BN_lshift1 will only work once there is a value :-) */

BN_zero(dv);

- bn_wexpand(dv,1);

+ if(bn_wexpand(dv,1) == NULL) goto end;

dv->top=1;

if (!BN_lshift(D,D,nm-nd)) goto end;

diff --git a/lib/libcrypto/bn/bn_gf2m.c b/lib/libcrypto/bn/bn_gf2m.c
index 306f029f278..ae642ccb394 100644
--- a/lib/libcrypto/bn/bn_gf2m.c
+++ b/lib/libcrypto/bn/bn_gf2m.c

@@ -294,7 +294,8 @@ int BN_GF2m_add(BIGNUM *r, const BIGNUM *a, const BIGNUM *b)

if (a->top < b->top) { at = b; bt = a; }

else { at = a; bt = b; }

- bn_wexpand(r, at->top);

+ if(bn_wexpand(r, at->top) == NULL)

+ return 0;

for (i = 0; i < bt->top; i++)

{

diff --git a/lib/libcrypto/ec/ec2_smpl.c b/lib/libcrypto/ec/ec2_smpl.c
index 5cd1eac41fc..522d036ca1d 100644
--- a/lib/libcrypto/ec/ec2_smpl.c
+++ b/lib/libcrypto/ec/ec2_smpl.c

@@ -174,8 +174,10 @@ int ec_GF2m_simple_group_copy(EC_GROUP *dest, const EC_GROUP *src)

dest->poly[2] = src->poly[2];

dest->poly[3] = src->poly[3];

dest->poly[4] = src->poly[4];

- bn_wexpand(&dest->a, (int)(dest->poly[0] + BN_BITS2 - 1) / BN_BITS2);

- bn_wexpand(&dest->b, (int)(dest->poly[0] + BN_BITS2 - 1) / BN_BITS2);

+ if(bn_wexpand(&dest->a, (int)(dest->poly[0] + BN_BITS2 - 1) / BN_BITS2) == NULL)

+ return 0;

+ if(bn_wexpand(&dest->b, (int)(dest->poly[0] + BN_BITS2 - 1) / BN_BITS2) == NULL)

+ return 0;

for (i = dest->a.top; i < dest->a.dmax; i++) dest->a.d[i] = 0;

for (i = dest->b.top; i < dest->b.dmax; i++) dest->b.d[i] = 0;

return 1;

@@ -199,12 +201,12 @@ int ec_GF2m_simple_group_set_curve(EC_GROUP *group,

/* group->a */

if (!BN_GF2m_mod_arr(&group->a, a, group->poly)) goto err;

- bn_wexpand(&group->a, (int)(group->poly[0] + BN_BITS2 - 1) / BN_BITS2);

+ if(bn_wexpand(&group->a, (int)(group->poly[0] + BN_BITS2 - 1) / BN_BITS2) == NULL) goto err;

for (i = group->a.top; i < group->a.dmax; i++) group->a.d[i] = 0;

/* group->b */

if (!BN_GF2m_mod_arr(&group->b, b, group->poly)) goto err;

- bn_wexpand(&group->b, (int)(group->poly[0] + BN_BITS2 - 1) / BN_BITS2);

+ if(bn_wexpand(&group->b, (int)(group->poly[0] + BN_BITS2 - 1) / BN_BITS2) == NULL) goto err;

for (i = group->b.top; i < group->b.dmax; i++) group->b.d[i] = 0;

ret = 1;