commit f02b984f863c1dd0013e12cb9b2c715a63c1823f
author Gilles Peskine <Gilles.Peskine@arm.com> Tue Feb 25 19:52:44 2020 +0100
committer Gilles Peskine <Gilles.Peskine@arm.com> Tue Feb 25 19:52:44 2020 +0100
tree 2d2fad306c108ee40006ee678c65de6c3eac04b7
parent 8d36696e1fdb5228938a6cfe9c60ad3772a769dc

Sanity check on elliptic curve keys: check that the group is known

programs/fuzz/fuzz_privkey.c

diff --git a/programs/fuzz/fuzz_privkey.c b/programs/fuzz/fuzz_privkey.c
index 178d17b..8f1295e 100644
--- a/programs/fuzz/fuzz_privkey.c
+++ b/programs/fuzz/fuzz_privkey.c
@@ -46,12 +46,15 @@
 #if defined(MBEDTLS_ECP_C)
         if( mbedtls_pk_get_type( &pk ) == MBEDTLS_PK_ECKEY )
         {
-            mbedtls_ecp_keypair *ecp;
+            mbedtls_ecp_keypair *ecp = mbedtls_pk_ec( pk );
+            mbedtls_ecp_group_id grp_id = ecp->grp.id;
+            const mbedtls_ecp_curve_info *curve_info =
+                mbedtls_ecp_curve_info_from_grp_id( grp_id );
 
-            ecp = mbedtls_pk_ec( pk );
-            if (ecp) {
-                ret = 0;
-            }
+            /* If the curve is not supported, the key should not have been
+             * accepted. */
+            if( curve_info == NULL )
+                abort( );
         }
         else
 #endif