diff options
author | steve <steve> | 2012-02-27 15:22:41 +0000 |
---|---|---|
committer | steve <steve> | 2012-02-27 15:22:41 +0000 |
commit | caacf0bd7c5f24e282e3cdb97186300e69efe507 (patch) | |
tree | 99162e294230699da3fe58c748fb4797727893ef | |
parent | a452d5e6a9e34fd8aceae175e09b3679be7c5944 (diff) | |
download | openssl-caacf0bd7c5f24e282e3cdb97186300e69efe507.tar.gz |
Detect symmetric crypto errors in PKCS7_decrypt.
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
-rw-r--r-- | crypto/pkcs7/pk7_smime.c | 19 |
1 files changed, 17 insertions, 2 deletions
diff --git a/crypto/pkcs7/pk7_smime.c b/crypto/pkcs7/pk7_smime.c index 86742d0dc..0ed0feae5 100644 --- a/crypto/pkcs7/pk7_smime.c +++ b/crypto/pkcs7/pk7_smime.c @@ -573,15 +573,30 @@ int PKCS7_decrypt(PKCS7 *p7, EVP_PKEY *pkey, X509 *cert, BIO *data, int flags) return 0; } ret = SMIME_text(bread, data); + if (ret > 0 && BIO_method_type(tmpmem) == BIO_TYPE_CIPHER) + { + if (!BIO_get_cipher_status(tmpmem)) + ret = 0; + } BIO_free_all(bread); return ret; } else { for(;;) { i = BIO_read(tmpmem, buf, sizeof(buf)); - if(i <= 0) break; + if(i <= 0) + { + ret = 1; + if (BIO_method_type(tmpmem) == BIO_TYPE_CIPHER) + { + if (!BIO_get_cipher_status(tmpmem)) + ret = 0; + } + + break; + } BIO_write(data, buf, i); } BIO_free_all(tmpmem); - return 1; + return ret; } } |