From 80300ad0d91ae6807bbe0379afcc4ee0c58a2a33 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Manuel=20P=C3=A9gouri=C3=A9-Gonnard?= <mpg@elzevir.fr>
Date: Thu, 4 Jul 2013 11:57:13 +0200
Subject: [PATCH] Add checks for pk_alg.

Used to be implicitly done by oid_get_pk_alg().
---
 library/x509parse.c | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/library/x509parse.c b/library/x509parse.c
index b231f8001..a2ab08500 100644
--- a/library/x509parse.c
+++ b/library/x509parse.c
@@ -511,8 +511,11 @@ static int x509_get_pubkey( unsigned char **p,
     /*
      * only RSA public keys handled at this time
      */
-    if( oid_get_pk_alg( pk_alg_oid, &pk_alg ) != 0 )
+    if( oid_get_pk_alg( pk_alg_oid, &pk_alg ) != 0 ||
+            pk_alg != POLARSSL_PK_RSA )
+    {
         return( POLARSSL_ERR_X509_UNKNOWN_PK_ALG );
+    }
 
     if( ( ret = asn1_get_tag( p, end, &len, ASN1_BIT_STRING ) ) != 0 )
         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY + ret );
@@ -2256,8 +2259,11 @@ static int x509parse_key_pkcs8_unencrypted_der(
     /*
      * only RSA keys handled at this time
      */
-    if( oid_get_pk_alg( &pk_alg_oid, &pk_alg ) != 0 )
+    if( oid_get_pk_alg( &pk_alg_oid, &pk_alg ) != 0 ||
+            pk_alg != POLARSSL_PK_RSA )
+    {
         return( POLARSSL_ERR_X509_UNKNOWN_PK_ALG );
+    }
 
     /*
      * Get the OCTET STRING and parse the PKCS#1 format inside