Return if ssleay_rand_add called with zero num.

Treat a zero length passed to ssleay_rand_add a no op: the existing logic zeroes the md value which is very bad. OpenSSL itself never does this internally and the actual call doesn't make sense as it would be passing zero bytes of entropy. Thanks to Marcus Meissner <meissner@suse.de> for reporting this bug. (cherry picked from commit 5be1ae28ef3c4bdec95b94f14e0e939157be550a)
author: Dr. Stephen Henson <steve@openssl.org> 2014-04-06 23:11:20 +0100
committer: Dr. Stephen Henson <steve@openssl.org> 2014-04-07 19:44:45 +0100
commit: f74fa33bcee6bc84f41442bdd256d838c2cb3c14 (patch)
tree: 3f9f5049e0715dd36fd3fa0369d1064d0236759a /crypto/rand
parent: 731f431497f463f3a2a97236fe0187b11c44aead (diff)
download: openssl-f74fa33bcee6bc84f41442bdd256d838c2cb3c14.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/crypto/rand/md_rand.c b/crypto/rand/md_rand.c
index 6cab3087bb..67ac5ac927 100644
--- a/crypto/rand/md_rand.c
+++ b/crypto/rand/md_rand.c
@@ -212,6 +212,9 @@ static int ssleay_rand_add(const void *buf, int num, double add)
 	int do_not_lock;
 	int rv = 0;
 
+	if (!num)
+		return;
+
 	/*
 	 * (Based on the rand(3) manpage)
 	 *
author	Dr. Stephen Henson <steve@openssl.org>	2014-04-06 23:11:20 +0100
committer	Dr. Stephen Henson <steve@openssl.org>	2014-04-07 19:44:45 +0100
commit	f74fa33bcee6bc84f41442bdd256d838c2cb3c14 (patch)
tree	3f9f5049e0715dd36fd3fa0369d1064d0236759a /crypto/rand
parent	731f431497f463f3a2a97236fe0187b11c44aead (diff)
download	openssl-f74fa33bcee6bc84f41442bdd256d838c2cb3c14.tar.gz