openssl: guard against OOM on context creation

author Daniel Gustafsson <daniel@yesql.se>

Thu, 19 Nov 2020 00:40:24 +0000 (01:40 +0100)

committer Seonah Moon <seonah1.moon@samsung.com>

Thu, 18 Feb 2021 02:02:12 +0000 (11:02 +0900)
author Daniel Gustafsson <daniel@yesql.se>
Thu, 19 Nov 2020 00:40:24 +0000 (01:40 +0100)
committer Seonah Moon <seonah1.moon@samsung.com>
Thu, 18 Feb 2021 02:02:12 +0000 (11:02 +0900)
diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c

index f961c1f..6045679 100644 (file)
--- a/lib/vtls/openssl.c
+++ b/lib/vtls/openssl.c
@@ -4357,7 +4357,9 @@ static CURLcode Curl_ossl_md5sum(unsigned char *tmp, /* input */
    (void) unused;
  
    mdctx = EVP_MD_CTX_create();
-  EVP_DigestInit_ex(mdctx, EVP_md5(), NULL);
+  if(!mdctx)
+    return CURLE_OUT_OF_MEMORY;
+  EVP_DigestInit(mdctx, EVP_md5());
    EVP_DigestUpdate(mdctx, tmp, tmplen);
    EVP_DigestFinal_ex(mdctx, md5sum, &len);
    EVP_MD_CTX_destroy(mdctx);
@@ -4375,7 +4377,9 @@ static CURLcode Curl_ossl_sha256sum(const unsigned char *tmp, /* input */
    (void) unused;
  
    mdctx = EVP_MD_CTX_create();
-  EVP_DigestInit_ex(mdctx, EVP_sha256(), NULL);
+  if(!mdctx)
+    return CURLE_OUT_OF_MEMORY;
+  EVP_DigestInit(mdctx, EVP_sha256());
    EVP_DigestUpdate(mdctx, tmp, tmplen);
    EVP_DigestFinal_ex(mdctx, sha256sum, &len);
    EVP_MD_CTX_destroy(mdctx);
author	Daniel Gustafsson <daniel@yesql.se>
	Thu, 19 Nov 2020 00:40:24 +0000 (01:40 +0100)
committer	Seonah Moon <seonah1.moon@samsung.com>
	Thu, 18 Feb 2021 02:02:12 +0000 (11:02 +0900)