BN_CTX_get() can fail - consistently check its return value.

There are currently cases where the return from each call is checked, the return from only the last call is checked and cases where it is not checked at all (including code in bn, ec and engine). Checking the last return value is valid as once the function fails it will continue to return NULL. However, in order to be consistent check each call with the same idiom. This makes it easy to verify. Note there are still a handful of cases that do not follow the idiom - these will be handled separately. ok beck@ doug@
author: jsing <> 2015-02-09 15:49:22 +0000
committer: jsing <> 2015-02-09 15:49:22 +0000
commit: 16f790d01f7a6fc6c94e2a033a67b80c8ec5291c (patch)
tree: d924c624d5eb949a9e7e395dc99d92616e911ce9 /src/lib/libcrypto/ec/ecp_oct.c
parent: 42f7780549de5b7b5e3e7943cfef87e0e41970fc (diff)
download: openbsd-16f790d01f7a6fc6c94e2a033a67b80c8ec5291c.tar.gz
openbsd-16f790d01f7a6fc6c94e2a033a67b80c8ec5291c.tar.bz2
openbsd-16f790d01f7a6fc6c94e2a033a67b80c8ec5291c.zip
1 files changed, 16 insertions, 14 deletions
diff --git a/src/lib/libcrypto/ec/ecp_oct.c b/src/lib/libcrypto/ec/ecp_oct.c
index abc31e6382..994f0b08b1 100644
--- a/src/lib/libcrypto/ec/ecp_oct.c
+++ b/src/lib/libcrypto/ec/ecp_oct.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ecp_oct.c,v 1.6 2015/02/08 22:25:03 miod Exp $ */
+/* $OpenBSD: ecp_oct.c,v 1.7 2015/02/09 15:49:22 jsing Exp $ */
 /* Includes code written by Lenka Fibikova <fibikova@exp-math.uni-essen.de>
 * for the OpenSSL project.
 * Includes code written by Bodo Moeller for the OpenSSL project.
@@ -67,8 +67,8 @@
 #include "ec_lcl.h"
 int 
-ec_GFp_simple_set_compressed_coordinates(const EC_GROUP * group, EC_POINT * point,
+ec_GFp_simple_set_compressed_coordinates(const EC_GROUP * group,
-    const BIGNUM * x_, int y_bit, BN_CTX * ctx)
+    EC_POINT * point, const BIGNUM * x_, int y_bit, BN_CTX * ctx)
 {
        BN_CTX *new_ctx = NULL;
        BIGNUM *tmp1, *tmp2, *x, *y;
@@ -85,11 +85,13 @@ ec_GFp_simple_set_compressed_coordinates(const EC_GROUP * group, EC_POINT * poin
        y_bit = (y_bit != 0);
        BN_CTX_start(ctx);
-        tmp1 = BN_CTX_get(ctx);
+        if ((tmp1 = BN_CTX_get(ctx)) == NULL)
-        tmp2 = BN_CTX_get(ctx);
+                goto err;
-        x = BN_CTX_get(ctx);
+        if ((tmp2 = BN_CTX_get(ctx)) == NULL)
-        y = BN_CTX_get(ctx);
+                goto err;
-        if (y == NULL)
+        if ((x = BN_CTX_get(ctx)) == NULL)
+                goto err;
+        if ((y = BN_CTX_get(ctx)) == NULL)
                goto err;
        /*
@@ -239,9 +241,9 @@ ec_GFp_simple_point2oct(const EC_GROUP * group, const EC_POINT * point, point_co
                }
                BN_CTX_start(ctx);
                used_ctx = 1;
-                x = BN_CTX_get(ctx);
+                if ((x = BN_CTX_get(ctx)) == NULL)
-                y = BN_CTX_get(ctx);
+                        goto err;
-                if (y == NULL)
+                if ((y = BN_CTX_get(ctx)) == NULL)
                        goto err;
                if (!EC_POINT_get_affine_coordinates_GFp(group, point, x, y, ctx))
@@ -348,9 +350,9 @@ ec_GFp_simple_oct2point(const EC_GROUP * group, EC_POINT * point,
                        return 0;
        }
        BN_CTX_start(ctx);
-        x = BN_CTX_get(ctx);
+        if ((x = BN_CTX_get(ctx)) == NULL)
-        y = BN_CTX_get(ctx);
+                goto err;
-        if (y == NULL)
+        if ((y = BN_CTX_get(ctx)) == NULL)
                goto err;
        if (!BN_bin2bn(buf + 1, field_len, x))
author	jsing <>	2015-02-09 15:49:22 +0000
committer	jsing <>	2015-02-09 15:49:22 +0000
commit	16f790d01f7a6fc6c94e2a033a67b80c8ec5291c (patch)
tree	d924c624d5eb949a9e7e395dc99d92616e911ce9 /src/lib/libcrypto/ec/ecp_oct.c
parent	42f7780549de5b7b5e3e7943cfef87e0e41970fc (diff)
download	openbsd-16f790d01f7a6fc6c94e2a033a67b80c8ec5291c.tar.gz openbsd-16f790d01f7a6fc6c94e2a033a67b80c8ec5291c.tar.bz2 openbsd-16f790d01f7a6fc6c94e2a033a67b80c8ec5291c.zip