CVS: cvs.openbsd.org: src

[Theo Buehler]

CVSROOT:        /cvs
Module name:    src
Changes by:     t...@cvs.openbsd.org    2022/08/31 00:51:36

Modified files:
        lib/libssl     : ssl_rsa.c 

Log message:
Avoid potential NULL dereference in ssl_set_pkey()

Switch from X509_get_pubkey() to X509_get0_pubkey() to avoid an unnecessary
EVP_PKEY_free(). Check the return values of X509_get0_pubkey() and
EVP_PKEY_copy_parameters(). If the former returns NULL, the latter will
dereference NULL.

CID 25020

ok jsing