From: Ben Laurie <ben@openssl.org>
Date: Sat, 13 Dec 2008 17:45:27 +0000 (+0000)
Subject: *** empty log message ***
X-Git-Tag: OpenSSL_0_9_8k^2~129
X-Git-Url: https://git.openssl.org/?p=openssl.git;a=commitdiff_plain;h=ecd3370ba06af0ebb0cb851fc07b9f330d32e8a9;ds=sidebyside

*** empty log message ***
---

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index e6ba33d85b..9ad7c29a7d 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1532,6 +1532,9 @@ static int tls_decrypt_ticket(SSL *s, const unsigned char *etick, int eticklen,
  	 * integrity checks on ticket.
  	 */
 	mlen = HMAC_size(&hctx);
+	if (mlen <= 0)
+		return -1;
+
 	eticklen -= mlen;
 	/* Check HMAC of encrypted ticket */
 	HMAC_Update(&hctx, etick, eticklen);