check return values for EVP_Digest*() APIs Reviewed-by: Richard Levitte <levitte@openssl.org>

commit: d166ed8c11e10e9fdaeac182effb9dd318843924 [log] [tgz]
author: Dr. Stephen Henson <steve@openssl.org> Sat Jun 18 15:46:13 2016 +0100
committer: Dr. Stephen Henson <steve@openssl.org> Fri Jul 15 14:09:05 2016 +0100
tree: fd47ffb1f5d42b121b04d14c1a8f6bdc659637f6
parent: 1fc431ba57d12189a9bdacd3999ea2a7b91458d8 [diff] [blame]
diff --git a/ssl/statem/statem_clnt.c b/ssl/statem/statem_clnt.c
index be4ba9c..5eefa2a 100644
--- a/ssl/statem/statem_clnt.c
+++ b/ssl/statem/statem_clnt.c

@@ -1890,9 +1890,12 @@
      * elsewhere in OpenSSL. The session ID is set to the SHA256 (or SHA1 is
      * SHA256 is disabled) hash of the ticket.
      */
-    EVP_Digest(s->session->tlsext_tick, ticklen,
-               s->session->session_id, &s->session->session_id_length,
-               EVP_sha256(), NULL);
+    if (!EVP_Digest(s->session->tlsext_tick, ticklen,
+                    s->session->session_id, &s->session->session_id_length,
+                    EVP_sha256(), NULL)) {
+        SSLerr(SSL_F_TLS_PROCESS_NEW_SESSION_TICKET, ERR_R_EVP_LIB);
+        goto err;
+    }
     return MSG_PROCESS_CONTINUE_READING;
  f_err:
     ssl3_send_alert(s, SSL3_AL_FATAL, al);
commit	d166ed8c11e10e9fdaeac182effb9dd318843924	[log] [tgz]
author	Dr. Stephen Henson <steve@openssl.org>	Sat Jun 18 15:46:13 2016 +0100
committer	Dr. Stephen Henson <steve@openssl.org>	Fri Jul 15 14:09:05 2016 +0100
tree	fd47ffb1f5d42b121b04d14c1a8f6bdc659637f6
parent	1fc431ba57d12189a9bdacd3999ea2a7b91458d8 [diff] [blame]