aboutsummaryrefslogtreecommitdiffstats
path: root/security
diff options
authorStefan Berger <stefanb@linux.ibm.com>2026-04-16 11:40:36 -0400
committerMimi Zohar <zohar@linux.ibm.com>2026-05-13 08:21:18 -0400
commitc93a5f038ccc11ed8558ce642f62d5ede701a348 (patch)
treee2b9abe9ac5ce697d29e46d0f314a3b29a120019 /security
parent69fc6474236d9edda6983623e4282f2bdfd8e3d8 (diff)
downloadath-c93a5f038ccc11ed8558ce642f62d5ede701a348.tar.gz
integrity: Check for NULL returned by asymmetric_key_public_key
Check for a NULL pointer returned by asymmetric_key_public_key and return -ENOKEY in this case. Signed-off-by: Stefan Berger <stefanb@linux.ibm.com> Tested-by: Kamlesh Kumar <kam@juniper.net> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Diffstat (limited to 'security')
-rw-r--r--security/integrity/digsig_asymmetric.c4
1 files changed, 4 insertions, 0 deletions
diff --git a/security/integrity/digsig_asymmetric.c b/security/integrity/digsig_asymmetric.c
index 6e68ec3becbd1..a791ad43b3fbb 100644
--- a/security/integrity/digsig_asymmetric.c
+++ b/security/integrity/digsig_asymmetric.c
@@ -108,6 +108,10 @@ int asymmetric_verify(struct key *keyring, const char *sig,
pks.hash_algo = hash_algo_name[hdr->hash_algo];
pk = asymmetric_key_public_key(key);
+ if (!pk) {
+ ret = -ENOKEY;
+ goto out;
+ }
pks.pkey_algo = pk->pkey_algo;
if (!strcmp(pk->pkey_algo, "rsa")) {
pks.encoding = "pkcs1";