[MONGOCRYPT-287] Error in signature callback may crash Created: 20/Oct/20  Updated: 28/Oct/23  Resolved: 20/Oct/20

Status: Closed
Project: Libmongocrypt
Component/s: C library
Affects Version/s: None
Fix Version/s: 1.1.0-beta1

Type: Bug Priority: Critical - P2
Reporter: Kevin Albertson Assignee: Kevin Albertson
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Epic Link: MONGOCRYPT-250

 Description   

If the driver callback set via mongocrypt_setopt_crypto_hook_sign_rsaes_pkcs1_v1_5 returns false (e.g. loading a key fails, or signing fails) libmongocrypt mishandles the error, and attempts to copy a NULL status.



 Comments   
Comment by Githook User [ 20/Oct/20 ]

Author:

{'name': 'Kevin Albertson', 'email': 'kevin.albertson@mongodb.com', 'username': 'kevinAlbs'}

Message: MONGOCRYPT-287 fix error handling of signature cb (#123)
Branch: master
https://github.com/mongodb/libmongocrypt/commit/510e6cf6118b0b57d46b84d445b99e3bfb5e6928

Comment by Kevin Albertson [ 20/Oct/20 ]

PR: https://github.com/mongodb/libmongocrypt/pull/123

Generated at Thu Feb 08 09:08:22 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.