x509: add ASN1_STRING_set() check result

author atishkov <a.tishkov@aladdin.ru>

Thu, 20 Jul 2023 08:02:38 +0000 (11:02 +0300)

committer Pauli <pauli@openssl.org>

Tue, 25 Jul 2023 02:11:34 +0000 (12:11 +1000)
author atishkov <a.tishkov@aladdin.ru>
Thu, 20 Jul 2023 08:02:38 +0000 (11:02 +0300)
committer Pauli <pauli@openssl.org>
Tue, 25 Jul 2023 02:11:34 +0000 (12:11 +1000)
diff --git a/crypto/x509/v3_ist.c b/crypto/x509/v3_ist.c

index 71bb76c48ea02ca227e72ffe4e906e41a1f7da48..ecece63e4164da57211c21c02c7655b21e49c6df 100644 (file)
--- a/crypto/x509/v3_ist.c
+++ b/crypto/x509/v3_ist.c
@@ -50,43 +50,38 @@ static ISSUER_SIGN_TOOL *v2i_issuer_sign_tool(X509V3_EXT_METHOD *method, X509V3_
          }
          if (strcmp(cnf->name, "signTool") == 0) {
              ist->signTool = ASN1_UTF8STRING_new();
-            if (ist->signTool == NULL) {
-                ERR_raise(ERR_LIB_X509V3, ERR_R_MALLOC_FAILURE);
-                ISSUER_SIGN_TOOL_free(ist);
-                return NULL;
+            if (ist->signTool == NULL || !ASN1_STRING_set(ist->signTool, cnf->value, strlen(cnf->value))) {
+                ERR_raise(ERR_LIB_X509V3, ERR_R_ASN1_LIB);
+                goto err;
              }
-            ASN1_STRING_set(ist->signTool, cnf->value, strlen(cnf->value));
          } else if (strcmp(cnf->name, "cATool") == 0) {
              ist->cATool = ASN1_UTF8STRING_new();
-            if (ist->cATool == NULL) {
-                ERR_raise(ERR_LIB_X509V3, ERR_R_MALLOC_FAILURE);
-                ISSUER_SIGN_TOOL_free(ist);
-                return NULL;
+            if (ist->cATool == NULL || !ASN1_STRING_set(ist->cATool, cnf->value, strlen(cnf->value))) {
+                ERR_raise(ERR_LIB_X509V3, ERR_R_ASN1_LIB);
+                goto err;
              }
-            ASN1_STRING_set(ist->cATool, cnf->value, strlen(cnf->value));
          } else if (strcmp(cnf->name, "signToolCert") == 0) {
              ist->signToolCert = ASN1_UTF8STRING_new();
-            if (ist->signToolCert == NULL) {
-                ERR_raise(ERR_LIB_X509V3, ERR_R_MALLOC_FAILURE);
-                ISSUER_SIGN_TOOL_free(ist);
-                return NULL;
+            if (ist->signToolCert == NULL || !ASN1_STRING_set(ist->signToolCert, cnf->value, strlen(cnf->value))) {
+                ERR_raise(ERR_LIB_X509V3, ERR_R_ASN1_LIB);
+                goto err;
              }
-            ASN1_STRING_set(ist->signToolCert, cnf->value, strlen(cnf->value));
          } else if (strcmp(cnf->name, "cAToolCert") == 0) {
              ist->cAToolCert = ASN1_UTF8STRING_new();
-            if (ist->cAToolCert == NULL) {
-                ERR_raise(ERR_LIB_X509V3, ERR_R_MALLOC_FAILURE);
-                ISSUER_SIGN_TOOL_free(ist);
-                return NULL;
+            if (ist->cAToolCert == NULL || !ASN1_STRING_set(ist->cAToolCert, cnf->value, strlen(cnf->value))) {
+                ERR_raise(ERR_LIB_X509V3, ERR_R_ASN1_LIB);
+                goto err;
              }
-            ASN1_STRING_set(ist->cAToolCert, cnf->value, strlen(cnf->value));
          } else {
              ERR_raise(ERR_LIB_X509V3, ERR_R_PASSED_INVALID_ARGUMENT);
-            ISSUER_SIGN_TOOL_free(ist);
-            return NULL;
+            goto err;
          }
      }
      return ist;
+
+err:
+    ISSUER_SIGN_TOOL_free(ist);
+    return NULL;
  }
  
  static int i2r_issuer_sign_tool(X509V3_EXT_METHOD *method,
author	atishkov <a.tishkov@aladdin.ru>
	Thu, 20 Jul 2023 08:02:38 +0000 (11:02 +0300)
committer	Pauli <pauli@openssl.org>
	Tue, 25 Jul 2023 02:11:34 +0000 (12:11 +1000)