ecdsa_newkey: fix a crash where the second curve name is missing or corrupt.

Bug found with the help of afl-fuzz.
2025-01-10 01:48:00 +00:00 · 2015-10-10 00:11:15 +01:00 · 2015-10-10 00:11:15 +01:00 · f69b371bcd
commit f69b371bcd
parent e3fe709a8f
1 changed files with 1 additions and 0 deletions
--- a/sshecc.c
+++ b/sshecc.c
@ -1770,6 +1770,7 @@ static void *ecdsa_newkey(const struct ssh_signkey *self,
    /* Curve name is duplicated for Weierstrass form */
    if (curve->type == EC_WEIERSTRASS) {
        getstring(&data, &len, &p, &slen);
+	if (!p) return NULL;
        if (!match_ssh_id(slen, p, curve->name)) return NULL;
    }