Check we recognise DRBG type in fips_drbgvs.c initialised DRBG_CTX if we

don't set type in FIPS_drbg_new().

diff --git a/fips/rand/fips_drbg_lib.c b/fips/rand/fips_drbg_lib.c
index 114f78e6ab33abf6f9abdda3f869f87e7e95b1bf..ddbb99df6635d3ba52c01bfe95e03c488aef0e9e 100644 (file)
--- a/fips/rand/fips_drbg_lib.c
+++ b/fips/rand/fips_drbg_lib.c
@@ -115,8 +115,14 @@ DRBG_CTX *FIPS_drbg_new(int type, unsigned int flags)
                FIPSerr(FIPS_F_FIPS_DRBG_NEW, ERR_R_MALLOC_FAILURE);
                return NULL;
                }
+
        if (type == 0)
+               {
+               memset(dctx, 0, sizeof(DRBG_CTX));
+               dctx->type = 0;
+               dctx->status = DRBG_STATUS_UNINITIALISED;
                return dctx;
+               }
 
        if (FIPS_drbg_init(dctx, type, flags) <= 0)
                {

diff --git a/fips/rand/fips_drbgvs.c b/fips/rand/fips_drbgvs.c
index db05d4048450c3d30ea306cd4908c176f952c21b..4d84884e361bf2ef6a1770fa2d4bfa7567069faf 100644 (file)
--- a/fips/rand/fips_drbgvs.c
+++ b/fips/rand/fips_drbgvs.c
@@ -314,6 +314,11 @@ int main(int argc,char **argv)
                if (!strcmp(keyword, "PersonalizationString"))
                        {
                        pers = hex2bin_m(value, &perslen);
+                       if (nid == 0)
+                               {
+                               fprintf(stderr, "DRBG type not recognised!\n");
+                               exit (1);
+                               }
                        dctx = FIPS_drbg_new(nid, df | DRBG_FLAG_TEST);
                        if (!dctx)
                                exit (1);