diff options
Diffstat (limited to 'ssl/s3_srvr.c')
| -rw-r--r-- | ssl/s3_srvr.c | 78 | 
1 files changed, 51 insertions, 27 deletions
| diff --git a/ssl/s3_srvr.c b/ssl/s3_srvr.c index 3a5f71d745fa..fcfc2fb9698f 100644 --- a/ssl/s3_srvr.c +++ b/ssl/s3_srvr.c @@ -383,7 +383,6 @@ int ssl3_accept(SSL *s)                       */                      if (al != TLS1_AD_UNKNOWN_PSK_IDENTITY)                          SSLerr(SSL_F_SSL3_ACCEPT, SSL_R_CLIENTHELLO_TLSEXT); -                    ret = SSL_TLSEXT_ERR_ALERT_FATAL;                      ret = -1;                      s->state = SSL_ST_ERR;                      goto end; @@ -967,7 +966,7 @@ int ssl3_check_client_hello(SSL *s)  int ssl3_get_client_hello(SSL *s)  { -    int i, j, ok, al, ret = -1; +    int i, j, ok, al, ret = -1, cookie_valid = 0;      unsigned int cookie_len;      long n;      unsigned long id; @@ -1155,8 +1154,7 @@ int ssl3_get_client_hello(SSL *s)                  SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO, SSL_R_COOKIE_MISMATCH);                  goto f_err;              } - -            ret = 2; +            cookie_valid = 1;          }          p += cookie_len; @@ -1264,7 +1262,7 @@ int ssl3_get_client_hello(SSL *s)  #ifndef OPENSSL_NO_TLSEXT      /* TLS extensions */      if (s->version >= SSL3_VERSION) { -        if (!ssl_parse_clienthello_tlsext(s, &p, d, n, &al)) { +        if (!ssl_parse_clienthello_tlsext(s, &p, d + n, &al)) {              /* 'al' set by ssl_parse_clienthello_tlsext */              SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO, SSL_R_PARSE_TLSEXT);              goto f_err; @@ -1492,8 +1490,7 @@ int ssl3_get_client_hello(SSL *s)          }      } -    if (ret < 0) -        ret = 1; +    ret = cookie_valid ? 2 : 1;      if (0) {   f_err:          ssl3_send_alert(s, SSL3_AL_FATAL, al); @@ -1503,7 +1500,7 @@ int ssl3_get_client_hello(SSL *s)      if (ciphers != NULL)          sk_SSL_CIPHER_free(ciphers); -    return (ret); +    return ret;  }  int ssl3_send_server_hello(SSL *s) @@ -1987,14 +1984,22 @@ int ssl3_send_server_key_exchange(SSL *s)                  for (num = 2; num > 0; num--) {                      EVP_MD_CTX_set_flags(&md_ctx,                                           EVP_MD_CTX_FLAG_NON_FIPS_ALLOW); -                    EVP_DigestInit_ex(&md_ctx, (num == 2) -                                      ? s->ctx->md5 : s->ctx->sha1, NULL); -                    EVP_DigestUpdate(&md_ctx, &(s->s3->client_random[0]), -                                     SSL3_RANDOM_SIZE); -                    EVP_DigestUpdate(&md_ctx, &(s->s3->server_random[0]), -                                     SSL3_RANDOM_SIZE); -                    EVP_DigestUpdate(&md_ctx, &(d[4]), n); -                    EVP_DigestFinal_ex(&md_ctx, q, (unsigned int *)&i); +                    if (EVP_DigestInit_ex(&md_ctx, +                                          (num == 2) ? s->ctx->md5 +                                                     : s->ctx->sha1, +                                          NULL) <= 0 +                        || EVP_DigestUpdate(&md_ctx, &(s->s3->client_random[0]), +                                            SSL3_RANDOM_SIZE) <= 0 +                        || EVP_DigestUpdate(&md_ctx, &(s->s3->server_random[0]), +                                            SSL3_RANDOM_SIZE) <= 0 +                        || EVP_DigestUpdate(&md_ctx, &(d[4]), n) <= 0 +                        || EVP_DigestFinal_ex(&md_ctx, q, +                                              (unsigned int *)&i) <= 0) { +                        SSLerr(SSL_F_SSL3_SEND_SERVER_KEY_EXCHANGE, +                               ERR_LIB_EVP); +                        al = SSL_AD_INTERNAL_ERROR; +                        goto f_err; +                    }                      q += i;                      j += i;                  } @@ -2024,16 +2029,17 @@ int ssl3_send_server_key_exchange(SSL *s)  #ifdef SSL_DEBUG                  fprintf(stderr, "Using hash %s\n", EVP_MD_name(md));  #endif -                EVP_SignInit_ex(&md_ctx, md, NULL); -                EVP_SignUpdate(&md_ctx, &(s->s3->client_random[0]), -                               SSL3_RANDOM_SIZE); -                EVP_SignUpdate(&md_ctx, &(s->s3->server_random[0]), -                               SSL3_RANDOM_SIZE); -                EVP_SignUpdate(&md_ctx, &(d[4]), n); -                if (!EVP_SignFinal(&md_ctx, &(p[2]), -                                   (unsigned int *)&i, pkey)) { +                if (EVP_SignInit_ex(&md_ctx, md, NULL) <= 0 +                        || EVP_SignUpdate(&md_ctx, &(s->s3->client_random[0]), +                                          SSL3_RANDOM_SIZE) <= 0 +                        || EVP_SignUpdate(&md_ctx, &(s->s3->server_random[0]), +                                          SSL3_RANDOM_SIZE) <= 0 +                        || EVP_SignUpdate(&md_ctx, &(d[4]), n) <= 0 +                        || EVP_SignFinal(&md_ctx, &(p[2]), +                                         (unsigned int *)&i, pkey) <= 0) {                      SSLerr(SSL_F_SSL3_SEND_SERVER_KEY_EXCHANGE, ERR_LIB_EVP); -                    goto err; +                    al = SSL_AD_INTERNAL_ERROR; +                    goto f_err;                  }                  s2n(i, p);                  n += i + 2; @@ -2879,7 +2885,15 @@ int ssl3_get_client_key_exchange(SSL *s)              pk = s->cert->pkeys[SSL_PKEY_GOST01].privatekey;          pkey_ctx = EVP_PKEY_CTX_new(pk, NULL); -        EVP_PKEY_decrypt_init(pkey_ctx); +        if (pkey_ctx == NULL) { +            al = SSL_AD_INTERNAL_ERROR; +            SSLerr(SSL_F_SSL3_GET_CLIENT_KEY_EXCHANGE, ERR_R_MALLOC_FAILURE); +            goto f_err; +        } +        if (EVP_PKEY_decrypt_init(pkey_ctx) <= 0) { +            SSLerr(SSL_F_SSL3_GET_CLIENT_KEY_EXCHANGE, ERR_R_INTERNAL_ERROR); +            goto gerr; +        }          /*           * If client certificate is present and is of the same type, maybe           * use it for key exchange.  Don't mind errors from @@ -3123,7 +3137,17 @@ int ssl3_get_cert_verify(SSL *s)          unsigned char signature[64];          int idx;          EVP_PKEY_CTX *pctx = EVP_PKEY_CTX_new(pkey, NULL); -        EVP_PKEY_verify_init(pctx); +        if (pctx == NULL) { +            al = SSL_AD_INTERNAL_ERROR; +            SSLerr(SSL_F_SSL3_GET_CERT_VERIFY, ERR_R_MALLOC_FAILURE); +            goto f_err; +        } +        if (EVP_PKEY_verify_init(pctx) <= 0) { +            EVP_PKEY_CTX_free(pctx); +            al = SSL_AD_INTERNAL_ERROR; +            SSLerr(SSL_F_SSL3_GET_CERT_VERIFY, ERR_R_INTERNAL_ERROR); +            goto f_err; +        }          if (i != 64) {              fprintf(stderr, "GOST signature length is %d", i);          } | 
