Detect symmetric crypto errors in PKCS7_decrypt.

Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
author: Dr. Stephen Henson <steve@openssl.org> 2012-02-27 15:22:54 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2012-02-27 15:22:54 +0000
commit: 236a99a40994fc323c6afd30f34e9724a05edfb6 (patch)
tree: 5658678a459d36578f0133fc711d804e5c9bc79d /crypto/pkcs7
parent: 04b4363ec8c3a9359d2460b166d510fc11570153 (diff)
1 files changed, 17 insertions, 2 deletions
diff --git a/crypto/pkcs7/pk7_smime.c b/crypto/pkcs7/pk7_smime.c
index 86742d0dcd..0ed0feae5d 100644
--- a/crypto/pkcs7/pk7_smime.c
+++ b/crypto/pkcs7/pk7_smime.c
@@ -573,15 +573,30 @@ int PKCS7_decrypt(PKCS7 *p7, EVP_PKEY *pkey, X509 *cert, BIO *data, int flags)
 			return 0;
 		}
 		ret = SMIME_text(bread, data);
+		if (ret > 0 && BIO_method_type(tmpmem) == BIO_TYPE_CIPHER)
+			{
+			if (!BIO_get_cipher_status(tmpmem))
+				ret = 0;
+			}
 		BIO_free_all(bread);
 		return ret;
 	} else {
 		for(;;) {
 			i = BIO_read(tmpmem, buf, sizeof(buf));
-			if(i <= 0) break;
+			if(i <= 0)
+				{
+				ret = 1;
+				if (BIO_method_type(tmpmem) == BIO_TYPE_CIPHER)
+					{
+					if (!BIO_get_cipher_status(tmpmem))
+						ret = 0;
+					}
+					
+				break;
+				}
 			BIO_write(data, buf, i);
 		}
 		BIO_free_all(tmpmem);
-		return 1;
+		return ret;
 	}
 }
author	Dr. Stephen Henson <steve@openssl.org>	2012-02-27 15:22:54 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2012-02-27 15:22:54 +0000
commit	236a99a40994fc323c6afd30f34e9724a05edfb6 (patch)
tree	5658678a459d36578f0133fc711d804e5c9bc79d /crypto/pkcs7
parent	04b4363ec8c3a9359d2460b166d510fc11570153 (diff)