Have OSSL_PARAM_allocate_from_text() raise error on unexpected neg number

author Richard Levitte <levitte@openssl.org>

Mon, 22 Nov 2021 16:08:19 +0000 (17:08 +0100)

committer Richard Levitte <levitte@openssl.org>

Wed, 24 Nov 2021 18:18:19 +0000 (19:18 +0100)
author Richard Levitte <levitte@openssl.org>
Mon, 22 Nov 2021 16:08:19 +0000 (17:08 +0100)
committer Richard Levitte <levitte@openssl.org>
Wed, 24 Nov 2021 18:18:19 +0000 (19:18 +0100)
diff --git a/crypto/cpt_err.c b/crypto/cpt_err.c

index 79c1a90595723da7124d3f441e4b8c1dd8b9f906..8574f31a8124b4512679b33a42630ad9f841d09c 100644 (file)
--- a/crypto/cpt_err.c
+++ b/crypto/cpt_err.c
@@ -29,6 +29,8 @@ static const ERR_STRING_DATA CRYPTO_str_reasons[] = {
      "insufficient param size"},
      {ERR_PACK(ERR_LIB_CRYPTO, 0, CRYPTO_R_INSUFFICIENT_SECURE_DATA_SPACE),
      "insufficient secure data space"},
+    {ERR_PACK(ERR_LIB_CRYPTO, 0, CRYPTO_R_INVALID_NEGATIVE_VALUE),
+    "invalid negative value"},
      {ERR_PACK(ERR_LIB_CRYPTO, 0, CRYPTO_R_INVALID_NULL_ARGUMENT),
      "invalid null argument"},
      {ERR_PACK(ERR_LIB_CRYPTO, 0, CRYPTO_R_INVALID_OSSL_PARAM_TYPE),
diff --git a/crypto/err/openssl.txt b/crypto/err/openssl.txt

index b47293a27ac305eeebb54b03c380d02043032417..777a0de19d7ff176bebb3069516c1f0b126ba988 100644 (file)
--- a/crypto/err/openssl.txt
+++ b/crypto/err/openssl.txt
@@ -434,6 +434,7 @@ CRYPTO_R_ILLEGAL_HEX_DIGIT:102:illegal hex digit
  CRYPTO_R_INSUFFICIENT_DATA_SPACE:106:insufficient data space
  CRYPTO_R_INSUFFICIENT_PARAM_SIZE:107:insufficient param size
  CRYPTO_R_INSUFFICIENT_SECURE_DATA_SPACE:108:insufficient secure data space
+CRYPTO_R_INVALID_NEGATIVE_VALUE:122:invalid negative value
  CRYPTO_R_INVALID_NULL_ARGUMENT:109:invalid null argument
  CRYPTO_R_INVALID_OSSL_PARAM_TYPE:110:invalid ossl param type
  CRYPTO_R_ODD_NUMBER_OF_DIGITS:103:odd number of digits
diff --git a/crypto/params_from_text.c b/crypto/params_from_text.c

index 84851edc47e7fecd607d02183cf26e22122de31e..43323c37075bbc142610c0c32f3226047248ba19 100644 (file)
--- a/crypto/params_from_text.c
+++ b/crypto/params_from_text.c
@@ -54,6 +54,12 @@ static int prepare_from_text(const OSSL_PARAM *paramdefs, const char *key,
          if (r == 0 || *tmpbn == NULL)
              return 0;
  
+        if (p->data_type == OSSL_PARAM_UNSIGNED_INTEGER
+            && BN_is_negative(*tmpbn)) {
+            ERR_raise(ERR_LIB_CRYPTO, CRYPTO_R_INVALID_NEGATIVE_VALUE);
+            return 0;
+        }
+
          /*
           * 2s complement negate, part 1
           *
diff --git a/include/openssl/cryptoerr.h b/include/openssl/cryptoerr.h

index 679966808963c78774838fd5a4b955e6692fbb7f..c6a04d9b973a5e38b90f463fde3319d823a770aa 100644 (file)
--- a/include/openssl/cryptoerr.h
+++ b/include/openssl/cryptoerr.h
@@ -28,6 +28,7 @@
  # define CRYPTO_R_INSUFFICIENT_DATA_SPACE                 106
  # define CRYPTO_R_INSUFFICIENT_PARAM_SIZE                 107
  # define CRYPTO_R_INSUFFICIENT_SECURE_DATA_SPACE          108
+# define CRYPTO_R_INVALID_NEGATIVE_VALUE                  122
  # define CRYPTO_R_INVALID_NULL_ARGUMENT                   109
  # define CRYPTO_R_INVALID_OSSL_PARAM_TYPE                 110
  # define CRYPTO_R_ODD_NUMBER_OF_DIGITS                    103
author	Richard Levitte <levitte@openssl.org>
	Mon, 22 Nov 2021 16:08:19 +0000 (17:08 +0100)
committer	Richard Levitte <levitte@openssl.org>
	Wed, 24 Nov 2021 18:18:19 +0000 (19:18 +0100)
crypto/cpt_err.c		patch \| blob \| blame \| history
crypto/err/openssl.txt		patch \| blob \| blame \| history
crypto/params_from_text.c		patch \| blob \| blame \| history
include/openssl/cryptoerr.h		patch \| blob \| blame \| history