From 0bc85579a9b5a106826169303dd2ee61c63c161e Mon Sep 17 00:00:00 2001
From: Darren Tucker <dtucker@zip.com.au>
Date: Tue, 7 Nov 2006 23:14:41 +1100
Subject:    - markus@cvs.openbsd.org 2006/11/06 21:25:28      [auth-rsa.c
 kexgexc.c kexdhs.c key.c ssh-dss.c sshd.c kexgexs.c      ssh-keygen.c bufbn.c
 moduli.c scard.c kexdhc.c sshconnect1.c dh.c rsa.c]      add missing checks
 for openssl return codes; with & ok djm@

---
 ssh-dss.c | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

(limited to 'ssh-dss.c')

diff --git a/ssh-dss.c b/ssh-dss.c
index fbc078e8..51a06e98 100644
--- a/ssh-dss.c
+++ b/ssh-dss.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-dss.c,v 1.23 2006/08/03 03:34:42 deraadt Exp $ */
+/* $OpenBSD: ssh-dss.c,v 1.24 2006/11/06 21:25:28 markus Exp $ */
 /*
  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
  *
@@ -161,8 +161,9 @@ ssh_dss_verify(const Key *key, const u_char *signature, u_int signaturelen,
 		fatal("ssh_dss_verify: BN_new failed");
 	if ((sig->s = BN_new()) == NULL)
 		fatal("ssh_dss_verify: BN_new failed");
-	BN_bin2bn(sigblob, INTBLOB_LEN, sig->r);
-	BN_bin2bn(sigblob+ INTBLOB_LEN, INTBLOB_LEN, sig->s);
+	if ((BN_bin2bn(sigblob, INTBLOB_LEN, sig->r) == NULL) ||
+	    (BN_bin2bn(sigblob+ INTBLOB_LEN, INTBLOB_LEN, sig->s) == NULL))
+		fatal("ssh_dss_verify: BN_bin2bn failed");
 
 	/* clean up */
 	memset(sigblob, 0, len);
-- 
cgit v1.2.1