RT3065: ec_private_key_dont_crash

This change saves several EC routines from crashing when an EC_KEY is missing a public key. The public key is optional in the EC private key format and, without this patch, running the following through `openssl ec` causes a crash: -----BEGIN EC PRIVATE KEY----- MBkCAQEECAECAwQFBgcIoAoGCCqGSM49AwEH -----END EC PRIVATE KEY----- Reviewed-by: Dr Stephen Henson <steve@openssl.org>
author: Adam Langley <agl@chromium.org> 2013-04-23 15:12:36 -0400
committer: Emilia Kasper <emilia@openssl.org> 2014-08-27 19:49:34 +0200
commit: 0388ac4c99e801462dafef3f2dab3f255ec33c96 (patch)
tree: 3afeff95722f1b30934dd883db2496e51f0858b2 /crypto/ec/ec_ameth.c
parent: 7b3e11c54466f1da8b707c932e308d345fd61101 (diff)
1 files changed, 8 insertions, 6 deletions
diff --git a/crypto/ec/ec_ameth.c b/crypto/ec/ec_ameth.c
index bede19b2c7..a149bf6c27 100644
--- a/crypto/ec/ec_ameth.c
+++ b/crypto/ec/ec_ameth.c
@@ -473,14 +473,16 @@ static int do_EC_KEY_print(BIO *bp, const EC_KEY *x, int off, int ktype)
 	if (ktype > 0)
 		{
 		public_key = EC_KEY_get0_public_key(x);
-		if ((pub_key = EC_POINT_point2bn(group, public_key,
-			EC_KEY_get_conv_form(x), NULL, ctx)) == NULL)
+		if (public_key != NULL)
 			{
-			reason = ERR_R_EC_LIB;
-			goto err;
-			}
-		if (pub_key)
+			if ((pub_key = EC_POINT_point2bn(group, public_key,
+				EC_KEY_get_conv_form(x), NULL, ctx)) == NULL)
+				{
+				reason = ERR_R_EC_LIB;
+				goto err;
+				}
 			buf_len = (size_t)BN_num_bytes(pub_key);
+			}
 		}
 
 	if (ktype == 2)
author	Adam Langley <agl@chromium.org>	2013-04-23 15:12:36 -0400
committer	Emilia Kasper <emilia@openssl.org>	2014-08-27 19:49:34 +0200
commit	0388ac4c99e801462dafef3f2dab3f255ec33c96 (patch)
tree	3afeff95722f1b30934dd883db2496e51f0858b2 /crypto/ec/ec_ameth.c
parent	7b3e11c54466f1da8b707c932e308d345fd61101 (diff)