Add missing return check for PACKET_buf_init

author Matt Caswell <matt@openssl.org>

Mon, 3 Aug 2015 16:20:07 +0000 (17:20 +0100)

committer Matt Caswell <matt@openssl.org>

Thu, 13 Aug 2015 19:34:51 +0000 (20:34 +0100)
author Matt Caswell <matt@openssl.org>
Mon, 3 Aug 2015 16:20:07 +0000 (17:20 +0100)
committer Matt Caswell <matt@openssl.org>
Thu, 13 Aug 2015 19:34:51 +0000 (20:34 +0100)
diff --git a/ssl/s3_srvr.c b/ssl/s3_srvr.c

index acb2fa94bc4edd8f91e48580603ed639eca9d75a..c723ea0f2d01776419cffa3ace279d7226621e1a 100644 (file)
--- a/ssl/s3_srvr.c
+++ b/ssl/s3_srvr.c
@@ -874,7 +874,11 @@ int ssl3_get_client_hello(SSL *s)
      if (!ok)
          return ((int)n);
      s->first_packet = 0;
-    PACKET_buf_init(&pkt, s->init_msg, n);
+    if (!PACKET_buf_init(&pkt, s->init_msg, n)) {
+        SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO, ERR_R_INTERNAL_ERROR);
+        al = SSL_AD_INTERNAL_ERROR;
+        goto f_err;
+    }
  
      /* First lets get s->client_version set correctly */
      if (RECORD_LAYER_is_sslv2_record(&s->rlayer)) {
author	Matt Caswell <matt@openssl.org>
	Mon, 3 Aug 2015 16:20:07 +0000 (17:20 +0100)
committer	Matt Caswell <matt@openssl.org>
	Thu, 13 Aug 2015 19:34:51 +0000 (20:34 +0100)