serverinfo_process_buffer: check result of realloc(ctx->cert->key->serverinfo) and don't leak memory if it fails Signed-off-by: Kurt Roeckx <kurt@roeckx.be> Reviewed-by: Matt Caswell <matt@openssl.org>

commit: e9e688effbd5f94e9a8614ca0181a9c8a596a6e1 [log] [tgz]
author: Jonas Maebe <jonas.maebe@elis.ugent.be> Mon Dec 09 16:57:04 2013 +0100
committer: Kurt Roeckx <kurt@roeckx.be> Wed Dec 10 18:35:17 2014 +0100
tree: 7854fc8460b5d25d6f423f8cab57e2be0dd8cf73
parent: bf8e7047aa888bdba4a89fd0d03862ebec2d302c [diff] [blame]
diff --git a/ssl/ssl_rsa.c b/ssl/ssl_rsa.c
index 6f9337e..006c02e 100644
--- a/ssl/ssl_rsa.c
+++ b/ssl/ssl_rsa.c

@@ -948,6 +948,8 @@
 int SSL_CTX_use_serverinfo(SSL_CTX *ctx, const unsigned char *serverinfo,
 			   size_t serverinfo_length)
 	{
+	unsigned char *new_serverinfo;
+
 	if (ctx == NULL || serverinfo == NULL || serverinfo_length == 0)
 		{
 		SSLerr(SSL_F_SSL_CTX_USE_SERVERINFO,ERR_R_PASSED_NULL_PARAMETER);
@@ -968,13 +970,14 @@
 		SSLerr(SSL_F_SSL_CTX_USE_SERVERINFO,ERR_R_INTERNAL_ERROR);
 		return 0;
 		}
-	ctx->cert->key->serverinfo = OPENSSL_realloc(ctx->cert->key->serverinfo,
+	new_serverinfo = OPENSSL_realloc(ctx->cert->key->serverinfo,
 						     serverinfo_length);
-	if (ctx->cert->key->serverinfo == NULL)
+	if (new_serverinfo == NULL)
 		{
 		SSLerr(SSL_F_SSL_CTX_USE_SERVERINFO,ERR_R_MALLOC_FAILURE);
 		return 0;
 		}
+	ctx->cert->key->serverinfo = new_serverinfo;
 	memcpy(ctx->cert->key->serverinfo, serverinfo, serverinfo_length);
 	ctx->cert->key->serverinfo_length = serverinfo_length;
commit	e9e688effbd5f94e9a8614ca0181a9c8a596a6e1	[log] [tgz]
author	Jonas Maebe <jonas.maebe@elis.ugent.be>	Mon Dec 09 16:57:04 2013 +0100
committer	Kurt Roeckx <kurt@roeckx.be>	Wed Dec 10 18:35:17 2014 +0100
tree	7854fc8460b5d25d6f423f8cab57e2be0dd8cf73
parent	bf8e7047aa888bdba4a89fd0d03862ebec2d302c [diff] [blame]