diff options
author | Matt Caswell <matt@openssl.org> | 2016-04-19 23:33:35 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2016-04-22 15:37:17 +0100 |
commit | ee85fc1dd67faebdeecb8fe8834facaee0566324 (patch) | |
tree | 08073541b84babf37402a56844132bb40d37132d /include/internal/dane.h | |
parent | 48c1e15ceb2252e65ba63f93a7bf39c1d368f38f (diff) |
Don't set peer_tmp until we have finished constructing it
If we fail halfway through constructing the peer_tmp EVP_PKEY but we have
already stored it in s->s3->peer_tmp then if anything tries to use it then
it will likely fail. This was causing s_client to core dump in the
sslskewith0p test. s_client was trying to print out the connection
parameters that it had negotiated so far. Arguably s_client should not do
that if the connection has failed...but given it is existing functionality
it's easier to fix libssl.
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Diffstat (limited to 'include/internal/dane.h')
0 files changed, 0 insertions, 0 deletions