move check to avoid memory leak.

8ca2ae77 · Ulf Möller · ee8aa821 · 8ca2ae77
隐藏空白更改
内联并排

Showing with 8 addition and 8 deletion

crypto/rsa/rsa_oaep.c crypto/rsa/rsa_oaep.c +8 -8

未找到文件。
--- a/crypto/rsa/rsa_oaep.c
+++ b/crypto/rsa/rsa_oaep.c
@@ -102,6 +102,14 @@ int RSA_padding_check_PKCS1_OAEP(unsigned char *to, int tlen,
 	return (-1);
 	}

+    lzero = num - flen;
+    if (lzero < 0)
+	{
+	RSAerr(RSA_F_RSA_PADDING_CHECK_PKCS1_OAEP, RSA_R_OAEP_DECODING_ERROR);
+	return (-1);
+	}
+    maskeddb = from - lzero + SHA_DIGEST_LENGTH;
+    
    dblen = num - SHA_DIGEST_LENGTH;
    db = OPENSSL_malloc(dblen);
    if (db == NULL)
@@ -110,14 +118,6 @@ int RSA_padding_check_PKCS1_OAEP(unsigned char *to, int tlen,
 	return (-1);
 	}

-    lzero = num - flen;
-    if (lzero < 0)
-    {
-    RSAerr(RSA_F_RSA_PADDING_CHECK_PKCS1_OAEP, RSA_R_OAEP_DECODING_ERROR);
-    return (-1);
-    }
-    maskeddb = from - lzero + SHA_DIGEST_LENGTH;
-    
    MGF1(seed, SHA_DIGEST_LENGTH, maskeddb, dblen);
    for (i = lzero; i < SHA_DIGEST_LENGTH; i++)
 	seed[i] ^= from[i - lzero];