Fix for panic in signature verification if a peer sends a nil public key.

2025-04-24 14:22:16 +00:00 · 2019-09-20 09:37:49 -07:00 · 2019-09-20 09:37:49 -07:00 · ebfaf30705
commit ebfaf30705
parent 797a3f6c16
1 changed files with 5 additions and 0 deletions
--- a/p2p/conn/secret_connection.go
+++ b/p2p/conn/secret_connection.go
@ -133,6 +133,11 @@ func MakeSecretConnection(conn io.ReadWriteCloser, locPrivKey crypto.PrivKey) (*
 	}

 	remPubKey, remSignature := authSigMsg.Key, authSigMsg.Sig
+
+	if remPubKey == nil {
+		return nil, errors.New("Peer sent a nil public key")
+	}
+
 	if !remPubKey.VerifyBytes(challenge[:], remSignature) {
 		return nil, errors.New("Challenge verification failed")
 	}