Backport libcrypto audit: check return values of EVP functions instead

of assuming they will always suceed.
author: Dr. Stephen Henson <steve@openssl.org> 2011-06-03 20:53:00 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2011-06-03 20:53:00 +0000
commit: 24d7159abd5e8a3fb5a75167e01b24230fb0874b (patch)
tree: 16bdf4ef0a62f645b5954de9a6bc137e38d79c83 /crypto/dsa
parent: 7978dc989d09061913ce14a23a97c8c5f1821cdb (diff)
1 files changed, 7 insertions, 3 deletions
diff --git a/crypto/dsa/dsa_gen.c b/crypto/dsa/dsa_gen.c
index e509dc94e8..e6a5452016 100644
--- a/crypto/dsa/dsa_gen.c
+++ b/crypto/dsa/dsa_gen.c
@@ -202,8 +202,10 @@ int dsa_builtin_paramgen(DSA *ret, size_t bits, size_t qbits,
 				}
 
 			/* step 2 */
-			EVP_Digest(seed, qsize, md,   NULL, evpmd, NULL);
-			EVP_Digest(buf,  qsize, buf2, NULL, evpmd, NULL);
+			if (!EVP_Digest(seed, qsize, md,   NULL, evpmd, NULL))
+				goto err;
+			if (!EVP_Digest(buf,  qsize, buf2, NULL, evpmd, NULL))
+				goto err;
 			for (i = 0; i < qsize; i++)
 				md[i]^=buf2[i];
 
@@ -252,7 +254,9 @@ int dsa_builtin_paramgen(DSA *ret, size_t bits, size_t qbits,
 						break;
 					}
 
-				EVP_Digest(buf, qsize, md ,NULL, evpmd, NULL);
+				if (!EVP_Digest(buf, qsize, md ,NULL, evpmd,
+									NULL))
+					goto err;
 
 				/* step 8 */
 				if (!BN_bin2bn(md, qsize, r0))
author	Dr. Stephen Henson <steve@openssl.org>	2011-06-03 20:53:00 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2011-06-03 20:53:00 +0000
commit	24d7159abd5e8a3fb5a75167e01b24230fb0874b (patch)
tree	16bdf4ef0a62f645b5954de9a6bc137e38d79c83 /crypto/dsa
parent	7978dc989d09061913ce14a23a97c8c5f1821cdb (diff)