reject zero block length in PKCS12 keygen

author Dr. Stephen Henson <steve@openssl.org>

Wed, 4 May 2016 12:13:24 +0000 (13:13 +0100)

committer Dr. Stephen Henson <steve@openssl.org>

Wed, 4 May 2016 12:20:49 +0000 (13:20 +0100)
author Dr. Stephen Henson <steve@openssl.org>
Wed, 4 May 2016 12:13:24 +0000 (13:13 +0100)
committer Dr. Stephen Henson <steve@openssl.org>
Wed, 4 May 2016 12:20:49 +0000 (13:20 +0100)
diff --git a/crypto/pkcs12/p12_key.c b/crypto/pkcs12/p12_key.c

index 1a1ea7059c5f2a3f2c89a928746a25a53d450524..764f91bab91593d63ebc4e1c454f1cfb385ef1b4 100644 (file)
--- a/crypto/pkcs12/p12_key.c
+++ b/crypto/pkcs12/p12_key.c
@@ -128,7 +128,7 @@ int PKCS12_key_gen_uni(unsigned char *pass, int passlen, unsigned char *salt,
  #endif
      v = EVP_MD_block_size(md_type);
      u = EVP_MD_size(md_type);
-    if (u < 0)
+    if (u < 0 || v <= 0)
          goto err;
      D = OPENSSL_malloc(v);
      Ai = OPENSSL_malloc(u);
author	Dr. Stephen Henson <steve@openssl.org>
	Wed, 4 May 2016 12:13:24 +0000 (13:13 +0100)
committer	Dr. Stephen Henson <steve@openssl.org>
	Wed, 4 May 2016 12:20:49 +0000 (13:20 +0100)