Handle a memory allocation failure in ssl3_init_finished_mac()

The ssl3_init_finished_mac() function can fail, in which case we need to propagate the error up through the stack. RT#3198 Reviewed-by: Rich Salz <rsalz@openssl.org>
author: Matt Caswell <matt@openssl.org> 2016-06-03 11:59:19 +0100
committer: Matt Caswell <matt@openssl.org> 2016-06-03 20:29:04 +0100
commit: 2c4a056f59a6819b8a0d40e3a7e11cf6d35b3e88 (patch)
tree: c9d9275b21fc98c0f18f44729c1b0cbaf93c1a50 /ssl/statem/statem.c
parent: fa28bfd66fc221e18ee57134e42b54b4012e66db (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/ssl/statem/statem.c b/ssl/statem/statem.c
index 0b0595d237..28483e7944 100644
--- a/ssl/statem/statem.c
+++ b/ssl/statem/statem.c
@@ -332,8 +332,12 @@ static int state_machine(SSL *s, int server)
                 goto end;
             }
 
-        if (!server || st->state != MSG_FLOW_RENEGOTIATE)
-            ssl3_init_finished_mac(s);
+        if (!server || st->state != MSG_FLOW_RENEGOTIATE) {
+            if (!ssl3_init_finished_mac(s)) {
+                ossl_statem_set_error(s);
+                goto end;
+            }
+        }
 
         if (server) {
             if (st->state != MSG_FLOW_RENEGOTIATE) {
author	Matt Caswell <matt@openssl.org>	2016-06-03 11:59:19 +0100
committer	Matt Caswell <matt@openssl.org>	2016-06-03 20:29:04 +0100
commit	2c4a056f59a6819b8a0d40e3a7e11cf6d35b3e88 (patch)
tree	c9d9275b21fc98c0f18f44729c1b0cbaf93c1a50 /ssl/statem/statem.c
parent	fa28bfd66fc221e18ee57134e42b54b4012e66db (diff)