Sanitize input

Author: disa6302

src/source/Crypto/Dtls_mbedtls.c

@@ -10,9 +10,13 @@ mbedtls_ssl_srtp_profile DTLS_SRTP_SUPPORTED_PROFILES[] = {
 
 STATUS md5DigestCalculation(PBYTE inputStringBuff, UINT64 length, PBYTE outputBuff)
 {
-    mbedtls_md5_ret(inputStringBuff, length, outputBuff);
-    return STATUS_SUCCESS;
+    STATUS retStatus = STATUS_SUCCESS;
+    CHK_ERR(inputStringBuff != NULL && outputBuff != NULL, STATUS_INVALID_ARG, "Invalid input or output buffer");
+    CHK_ERR(!mbedtls_md5_ret(inputStringBuff, length, outputBuff), STATUS_INTERNAL_ERROR, "MD5 calculation failed");
+CleanUp:
+    return retStatus;
 }
+
 STATUS createDtlsSession(PDtlsSessionCallbacks pDtlsSessionCallbacks, TIMER_QUEUE_HANDLE timerQueueHandle, INT32 certificateBits,
                          BOOL generateRSACertificate, PRtcCertificate pRtcCertificates, PDtlsSession* ppDtlsSession)
 {

src/source/Crypto/Dtls_openssl.c

@@ -50,6 +50,12 @@ STATUS md5DigestCalculation(PBYTE inputStringBuff, UINT64 length, PBYTE outputBu
 #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
     EVP_MD_CTX* mdctx = NULL;
     const EVP_MD* md = NULL;
+#endif
+
+    CHK_ERR(inputStringBuff != NULL && outputBuff != NULL, STATUS_INVALID_ARG, "Invalid input or output buffer");
+
+#if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
+
     CHK_ERR(md = EVP_MD_fetch(NULL, "MD5", NULL), STATUS_INTERNAL_ERROR, "Failed to fetch MD5 provider");
     mdctx = EVP_MD_CTX_new();
     CHK_ERR(EVP_DigestInit_ex(mdctx, md, NULL), STATUS_INTERNAL_ERROR, "Message digest initialization failed.");
@@ -61,11 +67,12 @@ STATUS md5DigestCalculation(PBYTE inputStringBuff, UINT64 length, PBYTE outputBu
 
 CleanUp:
 #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
-    EVP_MD_CTX_free(mdctx);
-    EVP_MD_free((EVP_MD*) md);
-// Adding else to get around Mac unused label error
-#else
-    retStatus = STATUS_SUCCESS;
+    if (mdctx != NULL) {
+        EVP_MD_CTX_free(mdctx);
+    }
+    if (md != NULL) {
+        EVP_MD_free((EVP_MD*) md);
+    }
 #endif
     return retStatus;
 }