Catch error condition to prevent NULL pointer dereference.
authorLutz Jänicke <jaenicke@openssl.org>
Sun, 16 Nov 2003 16:30:39 +0000 (16:30 +0000)
committerLutz Jänicke <jaenicke@openssl.org>
Sun, 16 Nov 2003 16:30:39 +0000 (16:30 +0000)
Submitted by: Goetz Babin-Ebell <babin-ebell@trustcenter.de>

PR: #766

apps/apps.c

index b1916bb..62fa21d 100644 (file)
@@ -475,7 +475,7 @@ static int ui_read(UI *ui, UI_STRING *uis)
                        {
                        const char *password =
                                ((PW_CB_DATA *)UI_get0_user_data(ui))->password;
-                       if (password[0] != '\0')
+                       if (password && password[0] != '\0')
                                {
                                UI_set_result(ui, uis, password);
                                return 1;
@@ -499,7 +499,7 @@ static int ui_write(UI *ui, UI_STRING *uis)
                        {
                        const char *password =
                                ((PW_CB_DATA *)UI_get0_user_data(ui))->password;
-                       if (password[0] != '\0')
+                       if (password && password[0] != '\0')
                                return 1;
                        }
                default: