From b4942f7f0c56f2c5dcd783760a8c915463e8e744 Mon Sep 17 00:00:00 2001
From: Timur Pocheptsov <timur.pocheptsov@qt.io>
Date: Thu, 22 Jul 2021 15:49:30 +0200
Subject: [PATCH] doCrypt() - check the error codes
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Disabled (moved into the legacy provider) DES-CBC results in a crash,
when setting key length.

Pick-to: 6.2 6.1 5.15
Change-Id: Ie0b49424f11d8042ebecebfd3b6346263f730551
Reviewed-by: Mårten Nordheim <marten.nordheim@qt.io>
---
 src/plugins/tls/openssl/qtlskey_openssl.cpp | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/src/plugins/tls/openssl/qtlskey_openssl.cpp b/src/plugins/tls/openssl/qtlskey_openssl.cpp
index 5333623d700..0d5b6986681 100644
--- a/src/plugins/tls/openssl/qtlskey_openssl.cpp
+++ b/src/plugins/tls/openssl/qtlskey_openssl.cpp
@@ -38,6 +38,7 @@
 ****************************************************************************/
 
 #include "qsslsocket_openssl_symbols_p.h"
+#include "qtlsbackend_openssl_p.h"
 #include "qtlskey_openssl_p.h"
 
 #include <QtNetwork/private/qsslkey_p.h>
@@ -437,7 +438,12 @@ QByteArray doCrypt(QSslKeyPrivate::Cipher cipher, const QByteArray &data,
 
     EVP_CIPHER_CTX *ctx = q_EVP_CIPHER_CTX_new();
     q_EVP_CIPHER_CTX_reset(ctx);
-    q_EVP_CipherInit(ctx, type, nullptr, nullptr, enc);
+    if (q_EVP_CipherInit(ctx, type, nullptr, nullptr, enc) != 1) {
+        q_EVP_CIPHER_CTX_free(ctx);
+        QTlsBackendOpenSSL::logAndClearErrorQueue();
+        return {};
+    }
+
     q_EVP_CIPHER_CTX_set_key_length(ctx, key.size());
     if (cipher == Cipher::Rc2Cbc)
         q_EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_SET_RC2_KEY_BITS, 8 * key.size(), nullptr);