EVP: Fix evp_pkey_ctx_store_cached_data() to handle provider backed EVP_PKEY_CTX

It assumed there would always be a non-NULL ctx->pmeth, leading to a crash when that isn't the case. Since it needs to check 'keytype' when that one isn't -1, we also add a corresponding check for the provider backed EVP_PKEY_CTX case. Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> (Merged from https://github.com/openssl/openssl/pull/13973)
author: Richard Levitte <levitte@openssl.org> 2021-01-27 11:07:38 +0100
committer: Richard Levitte <levitte@openssl.org> 2021-02-03 17:20:56 +0100
commit: 977e95b912138d02bae86d829a990d81c2bbcca0 (patch)
tree: 0e0c3e9a851c9676fc4b1fe81e111c77c74fb8a4 /crypto/evp/pmeth_lib.c
parent: 60488d2434c5be15dc14e1fa2a8733f076d9ccf4 (diff)
1 files changed, 27 insertions, 2 deletions
diff --git a/crypto/evp/pmeth_lib.c b/crypto/evp/pmeth_lib.c
index bc58ea367c..91d892ec34 100644
--- a/crypto/evp/pmeth_lib.c
+++ b/crypto/evp/pmeth_lib.c
@@ -1684,8 +1684,33 @@ static int evp_pkey_ctx_store_cached_data(EVP_PKEY_CTX *ctx,
                                           int cmd, const char *name,
                                           const void *data, size_t data_len)
 {
-    if ((keytype != -1 && ctx->pmeth->pkey_id != keytype)
-        || ((optype != -1) && !(ctx->operation & optype))) {
+    if (keytype != -1) {
+        switch (evp_pkey_ctx_state(ctx)) {
+        case EVP_PKEY_STATE_PROVIDER:
+            if (ctx->keymgmt == NULL) {
+                ERR_raise(ERR_LIB_EVP, EVP_R_COMMAND_NOT_SUPPORTED);
+                return -2;
+            }
+            if (!EVP_KEYMGMT_is_a(ctx->keymgmt,
+                                  evp_pkey_type2name(keytype))) {
+                ERR_raise(ERR_LIB_EVP, EVP_R_INVALID_OPERATION);
+                return -1;
+            }
+            break;
+        case EVP_PKEY_STATE_UNKNOWN:
+        case EVP_PKEY_STATE_LEGACY:
+            if (ctx->pmeth == NULL) {
+                ERR_raise(ERR_LIB_EVP, EVP_R_COMMAND_NOT_SUPPORTED);
+                return -2;
+            }
+            if (ctx->pmeth->pkey_id != keytype) {
+                ERR_raise(ERR_LIB_EVP, EVP_R_INVALID_OPERATION);
+                return -1;
+            }
+            break;
+        }
+    }
+    if (optype != -1 && (ctx->operation & optype) == 0) {
         ERR_raise(ERR_LIB_EVP, EVP_R_INVALID_OPERATION);
         return -1;
     }
author	Richard Levitte <levitte@openssl.org>	2021-01-27 11:07:38 +0100
committer	Richard Levitte <levitte@openssl.org>	2021-02-03 17:20:56 +0100
commit	977e95b912138d02bae86d829a990d81c2bbcca0 (patch)
tree	0e0c3e9a851c9676fc4b1fe81e111c77c74fb8a4 /crypto/evp/pmeth_lib.c
parent	60488d2434c5be15dc14e1fa2a8733f076d9ccf4 (diff)