automatic import of cjoseopeneuler24.03_LTS

author: CoprDistGit <infra@openeuler.org> 2024-08-05 01:41:44 +0000
committer: CoprDistGit <infra@openeuler.org> 2024-08-05 01:41:44 +0000
commit: e72aab987518d660d7ff3168579e66334b6d442b (patch)
tree: b7f64c0eb70b329560e089a7e0f3c617d4ad382a /0002-check-cjose_get_alloc.patch
parent: 83a06609c93886ffa0bdbf135a6dcbd2f78a59cf (diff)
1 files changed, 25 insertions, 0 deletions
diff --git a/0002-check-cjose_get_alloc.patch b/0002-check-cjose_get_alloc.patch
new file mode 100644
index 0000000..bcf02f5
--- /dev/null
+++ b/0002-check-cjose_get_alloc.patch
@@ -0,0 +1,25 @@
+commit 54d449473b21e93805070264791e80f84f601b4d
+Author: Hans Zandbelt <hans.zandbelt@zmartzone.eu>
+Date:   Tue Apr 5 20:51:20 2022 +0200
+
+    check result of cek = cjose_get_alloc()(cek_len) in jwe.c
+    
+    see: https://github.com/cisco/cjose/issues/110
+    
+    Signed-off-by: Hans Zandbelt <hans.zandbelt@zmartzone.eu>
+
+diff --git a/src/jwe.c b/src/jwe.c
+index 4285097..157ddec 100644
+--- a/src/jwe.c
++++ b/src/jwe.c
+@@ -2064,6 +2064,10 @@ uint8_t *cjose_jwe_decrypt_multi(cjose_jwe_t *jwe, cjose_key_locator key_locator
+         {
+             cek_len = jwe->cek_len;
+             cek = cjose_get_alloc()(cek_len);
++            if (!cek) {
++               CJOSE_ERROR(err, CJOSE_ERR_NO_MEMORY);
++               return NULL;
++            }
+             memcpy(cek, jwe->cek, cek_len);
+         }
+         else
author	CoprDistGit <infra@openeuler.org>	2024-08-05 01:41:44 +0000
committer	CoprDistGit <infra@openeuler.org>	2024-08-05 01:41:44 +0000
commit	e72aab987518d660d7ff3168579e66334b6d442b (patch)
tree	b7f64c0eb70b329560e089a7e0f3c617d4ad382a /0002-check-cjose_get_alloc.patch
parent	83a06609c93886ffa0bdbf135a6dcbd2f78a59cf (diff)