From 3680c7f52ff8f6122cf63fec2968f882d94a47e5 Mon Sep 17 00:00:00 2001
From: Mike Hearn <hearn@google.com>
Date: Thu, 21 Feb 2013 14:42:04 +0100
Subject: [PATCH] Restrict scope of NPE check for Bouncy Castle bug.

---
 .../main/java/com/google/bitcoin/core/ECKey.java    | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/core/src/main/java/com/google/bitcoin/core/ECKey.java b/core/src/main/java/com/google/bitcoin/core/ECKey.java
index 0210fe39..bb62ae00 100644
--- a/core/src/main/java/com/google/bitcoin/core/ECKey.java
+++ b/core/src/main/java/com/google/bitcoin/core/ECKey.java
@@ -323,12 +323,17 @@ public class ECKey implements Serializable {
             // OpenSSL deviates from the DER spec by interpreting these values as unsigned, though they should not be
             // Thus, we always use the positive versions.
             // See: http://r6.ca/blog/20111119T211504Z.html
-            return signer.verifySignature(data, r.getPositiveValue(), s.getPositiveValue());
+            try {
+                return signer.verifySignature(data, r.getPositiveValue(), s.getPositiveValue());
+            } catch (NullPointerException e) {
+                // Bouncy Castle contains a bug that can cause NPEs given specially crafted signatures. Those signatures
+                // are inherently invalid/attack sigs so we just fail them here rather than crash the thread.
+                System.err.println("Caught NPE inside bouncy castle: " + e);
+                e.printStackTrace();
+                return false;
+            }
         } catch (IOException e) {
             throw new RuntimeException(e);
-        } catch (NullPointerException e) {
-            // Bug in BouncyCastle can cause this for invalid signatures.
-            return false;
         }
     }