Explicitly check for empty ASN.1 strings in d2i_ECPrivateKey

The old code implicitly relies on the ASN.1 code returning a \0-prefixed buffer when the buffer length is 0. Change this to verify explicitly that the ASN.1 string has positive length. Reviewed-by: Dr Stephen Henson <steve@openssl.org> (cherry picked from commit 82dc08de54ce443c2a9ac478faffe79e76157795)
author: Emilia Kasper <emilia@openssl.org> 2014-08-25 12:38:16 +0200
committer: Emilia Kasper <emilia@openssl.org> 2014-08-27 19:50:15 +0200
commit: 7f7c05ca638c3cc6d261961fae439cd91e3c1d27 (patch)
tree: a119dc28ccb5729bc0a5497a4b79fd9bc25dba78 /crypto/ec
parent: 2083f7c465d07867dd9867b8742bb71c03d1f203 (diff)
1 files changed, 9 insertions, 3 deletions
diff --git a/crypto/ec/ec_asn1.c b/crypto/ec/ec_asn1.c
index 26d6360454..52d31c2f96 100644
--- a/crypto/ec/ec_asn1.c
+++ b/crypto/ec/ec_asn1.c
@@ -1195,14 +1195,20 @@ EC_KEY *d2i_ECPrivateKey(EC_KEY **a, const unsigned char **in, long len)
 	if (priv_key->publicKey)
 		{
 		const unsigned char *pub_oct;
-		size_t pub_oct_len;
+		int pub_oct_len;
 
 		pub_oct     = M_ASN1_STRING_data(priv_key->publicKey);
 		pub_oct_len = M_ASN1_STRING_length(priv_key->publicKey);
-		/* save the point conversion form */
+		/* The first byte - point conversion form - must be present. */
+                if (pub_oct_len <= 0)
+			{
+			ECerr(EC_F_D2I_ECPRIVATEKEY, EC_R_BUFFER_TOO_SMALL);
+			goto err;
+			}
+		/* Save the point conversion form. */
 		ret->conv_form = (point_conversion_form_t)(pub_oct[0] & ~0x01);
 		if (!EC_POINT_oct2point(ret->group, ret->pub_key,
-			pub_oct, pub_oct_len, NULL))
+					pub_oct, (size_t)(pub_oct_len), NULL))
 			{
 			ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_EC_LIB);
 			goto err;
author	Emilia Kasper <emilia@openssl.org>	2014-08-25 12:38:16 +0200
committer	Emilia Kasper <emilia@openssl.org>	2014-08-27 19:50:15 +0200
commit	7f7c05ca638c3cc6d261961fae439cd91e3c1d27 (patch)
tree	a119dc28ccb5729bc0a5497a4b79fd9bc25dba78 /crypto/ec
parent	2083f7c465d07867dd9867b8742bb71c03d1f203 (diff)