ssl/s3_pkt.c: detect RAND_bytes error in multi-block.
[openssl.git] / crypto / evp / e_aes_cbc_hmac_sha256.c
index c2c48f045c3131c2ba5d18d71fdafc22571a8f10..df031cc1c039c7ed3b8151478e07c73f0f0cad8b 100644 (file)
@@ -208,7 +208,8 @@ static size_t tls1_1_multi_block_encrypt(EVP_AES_HMAC_SHA256 *key,
        u64             seqnum;
 #endif
 
-       RAND_bytes((IVs=blocks[0].c),16*x4);    /* ask for IVs in bulk */
+       if (RAND_bytes((IVs=blocks[0].c),16*x4)<=0)     /* ask for IVs in bulk */
+               return 0;
 
        ctx = (SHA256_MB_CTX *)(storage+32-((size_t)storage%32));       /* align */