Add a missing check on s->s3->tmp.pkey

author Mansour Ahmadi <m.ahmadi@northeastern.edu>

Mon, 15 Oct 2018 19:11:24 +0000 (15:11 -0400)

committer Matt Caswell <matt@openssl.org>

Wed, 17 Oct 2018 08:22:14 +0000 (09:22 +0100)
author Mansour Ahmadi <m.ahmadi@northeastern.edu>
Mon, 15 Oct 2018 19:11:24 +0000 (15:11 -0400)
committer Matt Caswell <matt@openssl.org>
Wed, 17 Oct 2018 08:22:14 +0000 (09:22 +0100)
diff --git a/ssl/statem/statem_srvr.c b/ssl/statem/statem_srvr.c

index 95f83c8462968bb0b41aa5cd79096373259a8bc6..ac5fd09134ffe96657ace45414ef66c81ab87008 100644 (file)
--- a/ssl/statem/statem_srvr.c
+++ b/ssl/statem/statem_srvr.c
@@ -3224,6 +3224,12 @@ static int tls_process_cke_ecdhe(SSL *s, PACKET *pkt)
                       SSL_R_LENGTH_MISMATCH);
              goto err;
          }
+        if (skey == NULL) {
+            SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS_PROCESS_CKE_ECDHE,
+                     SSL_R_MISSING_TMP_ECDH_KEY);
+            goto err;
+        }
+
          ckey = EVP_PKEY_new();
          if (ckey == NULL || EVP_PKEY_copy_parameters(ckey, skey) <= 0) {
              SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS_PROCESS_CKE_ECDHE,
author	Mansour Ahmadi <m.ahmadi@northeastern.edu>
	Mon, 15 Oct 2018 19:11:24 +0000 (15:11 -0400)
committer	Matt Caswell <matt@openssl.org>
	Wed, 17 Oct 2018 08:22:14 +0000 (09:22 +0100)