Timing vulnerability in DSA signature generation (CVE-2018-0734).

[oweals/openssl.git] / crypto / ocsp / ocsp_srv.c

diff --git a/crypto/ocsp/ocsp_srv.c b/crypto/ocsp/ocsp_srv.c
index eff6ddbd605765b85d732bb855eb3bd4c8152389..6bd6f7b6d8928330605ca14615869c106ae8053b 100644 (file)
--- a/crypto/ocsp/ocsp_srv.c
+++ b/crypto/ocsp/ocsp_srv.c
@@ -237,6 +237,9 @@ int OCSP_basic_sign(OCSP_BASICRESP *brsp,
     EVP_PKEY_CTX *pkctx = NULL;
     int i;
 
+    if (ctx == NULL)
+        return 0;
+
     if (!EVP_DigestSignInit(ctx, &pkctx, dgst, NULL, key)) {
         EVP_MD_CTX_free(ctx);
         return 0;