Ensure name not null in EVP_get_cipherbyname This adds a check to EVP_get_cipherbyname which ensures that name is not null when passed to OPENSSL_strcasecmp, which cannot handle null values. OpenSSL already ensures this in their implementation of EVP_get_cipherbyname by using OBJ_NAME_get, so this improves parity. Change-Id: Icea45a5da2a7a461d2a65fbfbc84653c4f124dab Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47844 Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com>

commit: d4c3f2a59911e200b75fca5c53073aac520330ac [log] [tgz]
author: Shelley Vohr <shelley.vohr@gmail.com> Tue Jun 01 19:15:14 2021 +0200
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Tue Jun 01 17:34:15 2021 +0000
tree: e779f8a54604ec0ae0d8250b84f1eb088f43e7bb
parent: 92c6fbfc4c44dc8462d260d836020d2b793e7804 [diff]
diff --git a/crypto/cipher_extra/cipher_extra.c b/crypto/cipher_extra/cipher_extra.c
index b132265..786a5d5 100644
--- a/crypto/cipher_extra/cipher_extra.c
+++ b/crypto/cipher_extra/cipher_extra.c

@@ -89,6 +89,10 @@
 }
 
 const EVP_CIPHER *EVP_get_cipherbyname(const char *name) {
+  if (name == NULL) {
+    return NULL;
+  }
+
   if (OPENSSL_strcasecmp(name, "rc4") == 0) {
     return EVP_rc4();
   } else if (OPENSSL_strcasecmp(name, "des-cbc") == 0) {
commit	d4c3f2a59911e200b75fca5c53073aac520330ac	[log] [tgz]
author	Shelley Vohr <shelley.vohr@gmail.com>	Tue Jun 01 19:15:14 2021 +0200
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Tue Jun 01 17:34:15 2021 +0000
tree	e779f8a54604ec0ae0d8250b84f1eb088f43e7bb
parent	92c6fbfc4c44dc8462d260d836020d2b793e7804 [diff]