When loading a named key, check that the save buffer mallocs. It calls a library function that checks the pointer, but an application of the library shouldn't depend on side effects. This fixes #300.

2016-02-09 15:17:05 -08:00
parent 62a2efdacc
commit ccffee1617
1 changed files with 13 additions and 5 deletions
--- a/src/sniffer.c
+++ b/src/sniffer.c
@ -1041,9 +1041,7 @@ static int LoadKeyFile(byte** keyBuf, word32* keyBufSz,
                const char* password)
 {
    byte* loadBuf;
-    byte* saveBuf;
    long fileSz = 0;
-    int saveBufSz;
    XFILE file;
    int ret;

@ -1067,10 +1065,21 @@ static int LoadKeyFile(byte** keyBuf, word32* keyBufSz,
    XFCLOSE(file);

    if (typeKey == SSL_FILETYPE_PEM) {
-        saveBuf = (byte*)malloc(fileSz);
+        byte* saveBuf   = (byte*)malloc(fileSz);
+        int   saveBufSz = 0;

-        saveBufSz = wolfSSL_KeyPemToDer(loadBuf, (int)fileSz,
+        ret = -1;
+        if (saveBuf != NULL) {
+            saveBufSz = wolfSSL_KeyPemToDer(loadBuf, (int)fileSz,
                                                saveBuf, (int)fileSz, password);
+            if (saveBufSz < 0) {
+                saveBufSz = 0;
+                free(saveBuf);
+            }
+            else
+                ret = 0;
+        }
+
        free(loadBuf);

        *keyBuf = saveBuf;
@ -1081,7 +1090,6 @@ static int LoadKeyFile(byte** keyBuf, word32* keyBufSz,
        *keyBufSz = (word32)fileSz;
    }

-
    if (ret < 0) {
        return -1;
    }