forked from pool/ipmitool
Thomas Renninger
e7e8d0d141
* Add: 0001-fix-typo.patch 0002-added-microTCA-major-version.patch 0003-replaced-removed-defines-which-are-already-present-i.patch 0004-fix-typo.patch 0005-fix-typo.patch 0006-ID-461-OpenSSL-1.1-compatibility-error-storage-size-.patch 0007-ID-461-Make-compiler-happier-about-changes-related-t.patch 0008-ID-474-Compile-fix-on-nonlinux-systems.patch 0009-Add-bootstrap-support-for-Mac.patch 0010-Prevent-autoreconf-from-complaining-about-missing-NE.patch 0011-Add-git-hash-and-dirty-mark-to-ipmitool-version.patch 0012-Add-some-more-configure-build-editor-byproducts-to-..patch 0013-ID-478-ekanalyzer-Fixed-decoding-of-FRU-fields.patch 0014-ID-479-ekanalyzer-fix-processing-of-custom-mfg.-fiel.patch 0015-ID-477-fru-Fix-decoding-of-non-text-data-in-get_fru_.patch 0016-Make-git-revision-more-descriptive.patch 0017-ID-480-ipmitool-coredumps-in-EVP_CIPHER_CTX_init.patch OBS-URL: https://build.opensuse.org/package/show/systemsmanagement/ipmitool?expand=0&rev=40
54 lines
1.7 KiB
Diff
54 lines
1.7 KiB
Diff
From f004b4b7197fc83e7d47ec8cbcaefffa9a922717 Mon Sep 17 00:00:00 2001
|
|
From: Zdenek Styblik <stybla@turnovfree.net>
|
|
Date: Sun, 12 Mar 2017 14:00:35 +0100
|
|
Subject: [PATCH 17/17] ID:480 - ipmitool coredumps in EVP_CIPHER_CTX_init
|
|
|
|
IPMI tool coredumps due to changes introduced in ID:461. This shouldn't be
|
|
surprise as a NULL pointer is passed to init. Commit addresses this issue by
|
|
calling EVP_CIPHER_CTX_new() instead of EVP_CIPHER_CTX_init(), which is
|
|
deprecated, and by checking return value of call to former function.
|
|
---
|
|
src/plugins/lanplus/lanplus_crypt_impl.c | 14 ++++++++++----
|
|
1 file changed, 10 insertions(+), 4 deletions(-)
|
|
|
|
diff --git a/src/plugins/lanplus/lanplus_crypt_impl.c b/src/plugins/lanplus/lanplus_crypt_impl.c
|
|
index d12d0e3..0e330c1 100644
|
|
--- a/src/plugins/lanplus/lanplus_crypt_impl.c
|
|
+++ b/src/plugins/lanplus/lanplus_crypt_impl.c
|
|
@@ -165,10 +165,13 @@ lanplus_encrypt_aes_cbc_128(const uint8_t * iv,
|
|
uint32_t * bytes_written)
|
|
{
|
|
EVP_CIPHER_CTX *ctx = NULL;
|
|
- EVP_CIPHER_CTX_init(ctx);
|
|
+ ctx = EVP_CIPHER_CTX_new();
|
|
+ if (ctx == NULL) {
|
|
+ *bytes_written = 0;
|
|
+ return;
|
|
+ }
|
|
EVP_EncryptInit_ex(ctx, EVP_aes_128_cbc(), NULL, key, iv);
|
|
EVP_CIPHER_CTX_set_padding(ctx, 0);
|
|
-
|
|
|
|
*bytes_written = 0;
|
|
|
|
@@ -240,11 +243,14 @@ lanplus_decrypt_aes_cbc_128(const uint8_t * iv,
|
|
uint32_t * bytes_written)
|
|
{
|
|
EVP_CIPHER_CTX *ctx = NULL;
|
|
- EVP_CIPHER_CTX_init(ctx);
|
|
+ ctx = EVP_CIPHER_CTX_new();
|
|
+ if (ctx == NULL) {
|
|
+ *bytes_written = 0;
|
|
+ return;
|
|
+ }
|
|
EVP_DecryptInit_ex(ctx, EVP_aes_128_cbc(), NULL, key, iv);
|
|
EVP_CIPHER_CTX_set_padding(ctx, 0);
|
|
|
|
-
|
|
if (verbose >= 5)
|
|
{
|
|
printbuf(iv, 16, "decrypting with this IV");
|
|
--
|
|
1.8.5.6
|
|
|