check buffer is larger enough before overwriting

crypto/ecdsa/ecdsatest.c

@@ -168,8 +168,7 @@ int fbytes(unsigned char *buf, int num)
 		return 0;
 		}
 	fbytes_counter ++;
-	ret = BN_bn2bin(tmp, buf);	
-	if (ret == 0 || ret != num)
+	if (num != BN_num_bytes(tmp) || !BN_bn2bin(tmp, buf))
 		ret = 0;
 	else 
 		ret = 1;