SSL_set_session: check for NULL after allocating s->kssl_ctx->client_princ

author Jonas Maebe <jonas.maebe@elis.ugent.be>

Mon, 9 Dec 2013 16:02:44 +0000 (17:02 +0100)

committer Kurt Roeckx <kurt@roeckx.be>

Wed, 10 Dec 2014 17:35:18 +0000 (18:35 +0100)
author Jonas Maebe <jonas.maebe@elis.ugent.be>
Mon, 9 Dec 2013 16:02:44 +0000 (17:02 +0100)
committer Kurt Roeckx <kurt@roeckx.be>
Wed, 10 Dec 2014 17:35:18 +0000 (18:35 +0100)
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c

index 3bac2dbc6939643a15e7d4976654f5980f83bf19..a85f2792ce2bb8c73507a3490e88f3c0da92e012 100644 (file)
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -792,6 +792,11 @@ int SSL_set_session(SSL *s, SSL_SESSION *session)
                      session->krb5_client_princ_len > 0)
                  {
                      s->kssl_ctx->client_princ = (char *)OPENSSL_malloc(session->krb5_client_princ_len + 1);
+                    if (s->kssl_ctx->client_princ == NULL)
+                    {
+                        SSLerr(SSL_F_SSL_SET_SESSION, ERR_R_MALLOC_FAILURE);
+                        return(0);
+                    }
                      memcpy(s->kssl_ctx->client_princ,session->krb5_client_princ,
                              session->krb5_client_princ_len);
                      s->kssl_ctx->client_princ[session->krb5_client_princ_len] = '\0';
author	Jonas Maebe <jonas.maebe@elis.ugent.be>
	Mon, 9 Dec 2013 16:02:44 +0000 (17:02 +0100)
committer	Kurt Roeckx <kurt@roeckx.be>
	Wed, 10 Dec 2014 17:35:18 +0000 (18:35 +0100)