Open sshock opened 9 months ago
key_schedule_new is called from two places, but neither one checks for NULL return value.
key_schedule_new
As a result, failure to create a hash alg results in a crash (seg fault) happening later on in an unrelated spot.
Can we add something like this after calling key_schedule_new in these two spots?
if (tls->key_schedule == NULL) { ret = PTLS_ERROR_NO_MEMORY; goto Exit; }
key_schedule_newis called from two places, but neither one checks for NULL return value.As a result, failure to create a hash alg results in a crash (seg fault) happening later on in an unrelated spot.
Can we add something like this after calling
key_schedule_newin these two spots?