check buffer is larger enough before overwriting

author Dr. Stephen Henson <steve@openssl.org>

Wed, 6 Apr 2011 18:06:41 +0000 (18:06 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Wed, 6 Apr 2011 18:06:41 +0000 (18:06 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Wed, 6 Apr 2011 18:06:41 +0000 (18:06 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Wed, 6 Apr 2011 18:06:41 +0000 (18:06 +0000)
diff --git a/crypto/ecdsa/ecdsatest.c b/crypto/ecdsa/ecdsatest.c

index d5245344484ffd31b00fb8e89ab4f5885f73d259..7590f6f5b054fab90f1932db174ae507b24f78a4 100644 (file)
--- a/crypto/ecdsa/ecdsatest.c
+++ b/crypto/ecdsa/ecdsatest.c
@@ -168,10 +168,9 @@ int fbytes(unsigned char *buf, int num)
                 return 0;
                 }
         fbytes_counter ++;
-       ret = BN_bn2bin(tmp, buf);      
-       if (ret == 0 || ret != num)
+       if (num != BN_num_bytes(tmp) || !BN_bn2bin(tmp, buf))
                 ret = 0;
-       else
+       else 
                 ret = 1;
         if (tmp)
                 BN_free(tmp);
author	Dr. Stephen Henson <steve@openssl.org>
	Wed, 6 Apr 2011 18:06:41 +0000 (18:06 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Wed, 6 Apr 2011 18:06:41 +0000 (18:06 +0000)