Fix CID 1463883 Dereference after null check (in ess_find_cert_v2())

author Shane Lontis <shane.lontis@oracle.com>

Mon, 6 Jul 2020 06:13:48 +0000 (16:13 +1000)

committer Dmitry Belyavskiy <beldmit@gmail.com>

Wed, 8 Jul 2020 08:19:08 +0000 (11:19 +0300)
author Shane Lontis <shane.lontis@oracle.com>
Mon, 6 Jul 2020 06:13:48 +0000 (16:13 +1000)
committer Dmitry Belyavskiy <beldmit@gmail.com>
Wed, 8 Jul 2020 08:19:08 +0000 (11:19 +0300)
diff --git a/crypto/ess/ess_lib.c b/crypto/ess/ess_lib.c

index 17f9db98ffaa7d82e893dda8e3ead06864bda53e..3f418235adfa95bc930a23882787383376dea770 100644 (file)
--- a/crypto/ess/ess_lib.c
+++ b/crypto/ess/ess_lib.c
@@ -339,7 +339,9 @@ int ess_find_cert_v2(const STACK_OF(ESS_CERT_ID_V2) *cert_ids, const X509 *cert)
          const ESS_CERT_ID_V2 *cid = sk_ESS_CERT_ID_V2_value(cert_ids, i);
          const EVP_MD *md;
  
-        if (cid != NULL && cid->hash_alg != NULL)
+        if (cid == NULL)
+            return -1;
+        if (cid->hash_alg != NULL)
              md = EVP_get_digestbyobj(cid->hash_alg->algorithm);
          else
              md = EVP_sha256();
author	Shane Lontis <shane.lontis@oracle.com>
	Mon, 6 Jul 2020 06:13:48 +0000 (16:13 +1000)
committer	Dmitry Belyavskiy <beldmit@gmail.com>
	Wed, 8 Jul 2020 08:19:08 +0000 (11:19 +0300)