projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
a357acd
)
Fixed incorrect return code handling in ssl3_final_finish_mac.
author
Matt Caswell
<matt@openssl.org>
Tue, 10 Jun 2014 22:24:28 +0000
(23:24 +0100)
committer
Matt Caswell
<matt@openssl.org>
Fri, 13 Jun 2014 14:56:19 +0000
(15:56 +0100)
Based on an original patch by Joel Sing (OpenBSD) who also originally identified the issue.
ssl/s3_enc.c
patch
|
blob
|
history
diff --git
a/ssl/s3_enc.c
b/ssl/s3_enc.c
index 6bc08121622025af6ba46fabaa99467592d9895f..c44cc9298ab638a6039bfb8c2074f8c208622cab 100644
(file)
--- a/
ssl/s3_enc.c
+++ b/
ssl/s3_enc.c
@@
-631,10
+631,18
@@
int ssl3_cert_verify_mac(SSL *s, int md_nid, unsigned char *p)
int ssl3_final_finish_mac(SSL *s,
const char *sender, int len, unsigned char *p)
{
- int ret;
+ int ret
, sha1len
;
ret=ssl3_handshake_mac(s,NID_md5,sender,len,p);
+ if(ret == 0)
+ return 0;
+
p+=ret;
- ret+=ssl3_handshake_mac(s,NID_sha1,sender,len,p);
+
+ sha1len=ssl3_handshake_mac(s,NID_sha1,sender,len,p);
+ if(sha1len == 0)
+ return 0;
+
+ ret+=sha1len;
return(ret);
}
static int ssl3_handshake_mac(SSL *s, int md_nid,
projects / openssl.git / commitdiff