Add overflow checks for openssl_pkey_* functions

diff --git a/ext/openssl/openssl.c b/ext/openssl/openssl.c
index 938117e1e31baacb417208296c4955561e8f16c5..9deef36e8f54506a1dcb8708d6704597d148e3c3 100644 (file)
--- a/ext/openssl/openssl.c
+++ b/ext/openssl/openssl.c
@@ -3671,6 +3671,8 @@ PHP_FUNCTION(openssl_pkey_export_to_file)
        }
        RETVAL_FALSE;
 
+       PHP_OPENSSL_CHECK_OVERFLOW(passphrase_len, passphrase);
+
        key = php_openssl_evp_from_zval(zpkey, 0, passphrase, 0, &key_resource);
 
        if (key == NULL) {
@@ -3743,6 +3745,8 @@ PHP_FUNCTION(openssl_pkey_export)
        }
        RETVAL_FALSE;
 
+       PHP_OPENSSL_CHECK_OVERFLOW(passphrase_len, passphrase);
+
        key = php_openssl_evp_from_zval(zpkey, 0, passphrase, 0, &key_resource);
 
        if (key == NULL) {