Detect symmetric crypto errors in PKCS7_decrypt.

Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
author: steve <steve> 2012-02-27 15:22:41 +0000
committer: steve <steve> 2012-02-27 15:22:41 +0000
commit: caacf0bd7c5f24e282e3cdb97186300e69efe507 (patch)
tree: 99162e294230699da3fe58c748fb4797727893ef
parent: a452d5e6a9e34fd8aceae175e09b3679be7c5944 (diff)
download: openssl-caacf0bd7c5f24e282e3cdb97186300e69efe507.tar.gz
1 files changed, 17 insertions, 2 deletions
diff --git a/crypto/pkcs7/pk7_smime.c b/crypto/pkcs7/pk7_smime.c
index 86742d0dc..0ed0feae5 100644
--- a/crypto/pkcs7/pk7_smime.c
+++ b/crypto/pkcs7/pk7_smime.c
@@ -573,15 +573,30 @@ int PKCS7_decrypt(PKCS7 *p7, EVP_PKEY *pkey, X509 *cert, BIO *data, int flags)
 			return 0;
 		}
 		ret = SMIME_text(bread, data);
+		if (ret > 0 && BIO_method_type(tmpmem) == BIO_TYPE_CIPHER)
+			{
+			if (!BIO_get_cipher_status(tmpmem))
+				ret = 0;
+			}
 		BIO_free_all(bread);
 		return ret;
 	} else {
 		for(;;) {
 			i = BIO_read(tmpmem, buf, sizeof(buf));
-			if(i <= 0) break;
+			if(i <= 0)
+				{
+				ret = 1;
+				if (BIO_method_type(tmpmem) == BIO_TYPE_CIPHER)
+					{
+					if (!BIO_get_cipher_status(tmpmem))
+						ret = 0;
+					}
+					
+				break;
+				}
 			BIO_write(data, buf, i);
 		}
 		BIO_free_all(tmpmem);
-		return 1;
+		return ret;
 	}
 }
author	steve <steve>	2012-02-27 15:22:41 +0000
committer	steve <steve>	2012-02-27 15:22:41 +0000
commit	caacf0bd7c5f24e282e3cdb97186300e69efe507 (patch)
tree	99162e294230699da3fe58c748fb4797727893ef
parent	a452d5e6a9e34fd8aceae175e09b3679be7c5944 (diff)
download	openssl-caacf0bd7c5f24e282e3cdb97186300e69efe507.tar.gz