signature/sm2_sig.c: Add the check for the EVP_MD_CTX_get_size()

Add the check for the return value of EVP_MD_CTX_get_size() to avoid invalid negative numbers. Fixes: d0b79f8631 ("Add SM2 signature algorithm to default provider") Signed-off-by: Jiasheng Jiang <jiasheng@purdue.edu> Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Todd Short <todd.short@me.com> Reviewed-by: Neil Horman <nhorman@openssl.org> (Merged from https://github.com/openssl/openssl/pull/23959)
author: Jiasheng Jiang <jiasheng@purdue.edu> 2024-03-23 15:37:43 +0000
committer: Neil Horman <nhorman@openssl.org> 2024-03-30 09:05:31 -0400
commit: 64963c8b7a11728b5d252420f56f82532c14076d (patch)
tree: 472818dbd4743c04462208cd30749c6873240704 /providers
parent: 4169d58c855718d90424fd5da632cf2f2b46e691 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/providers/implementations/signature/sm2_sig.c b/providers/implementations/signature/sm2_sig.c
index 479e4eebe8..6b8936b959 100644
--- a/providers/implementations/signature/sm2_sig.c
+++ b/providers/implementations/signature/sm2_sig.c
@@ -313,6 +313,7 @@ int sm2sig_digest_verify_final(void *vpsm2ctx, const unsigned char *sig,
 
     if (psm2ctx == NULL
         || psm2ctx->mdctx == NULL
+        || EVP_MD_get_size(psm2ctx->md) <= 0
         || EVP_MD_get_size(psm2ctx->md) > (int)sizeof(digest))
         return 0;
author	Jiasheng Jiang <jiasheng@purdue.edu>	2024-03-23 15:37:43 +0000
committer	Neil Horman <nhorman@openssl.org>	2024-03-30 09:05:31 -0400
commit	64963c8b7a11728b5d252420f56f82532c14076d (patch)
tree	472818dbd4743c04462208cd30749c6873240704 /providers
parent	4169d58c855718d90424fd5da632cf2f2b46e691 (diff)