Security fixes brought forward from 0.9.7.

author: ben <ben> 2002-11-13 15:41:31 +0000
committer: ben <ben> 2002-11-13 15:41:31 +0000
commit: 9f07ebd35233f1fb5eeb43c60f26345aa88ddc8c (patch)
tree: 700d3494027a7c66aeb5a7887bd1ab2d0057f848 /ssl/s2_pkt.c
parent: ee3b594a615e498a2832a4107529a335abe2afec (diff)
download: openssl-9f07ebd35233f1fb5eeb43c60f26345aa88ddc8c.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/ssl/s2_pkt.c b/ssl/s2_pkt.c
index cf0aee2bd..d82f13761 100644
--- a/ssl/s2_pkt.c
+++ b/ssl/s2_pkt.c
@@ -113,6 +113,7 @@
 #ifndef OPENSSL_NO_SSL2
 #include <stdio.h>
 #include <errno.h>
+#include "cryptlib.h"
 #define USE_SOCKETS
 
 static int read_n(SSL *s,unsigned int n,unsigned int max,unsigned int extend);
@@ -247,6 +248,7 @@ static int ssl2_read_internal(SSL *s, void *buf, int len, int peek)
 		else
 			{
 			mac_size=EVP_MD_size(s->read_hash);
+			OPENSSL_assert(mac_size <= MAX_MAC_SIZE);
 			s->s2->mac_data=p;
 			s->s2->ract_data= &p[mac_size];
 			if (s->s2->padding + mac_size > s->s2->rlength)
author	ben <ben>	2002-11-13 15:41:31 +0000
committer	ben <ben>	2002-11-13 15:41:31 +0000
commit	9f07ebd35233f1fb5eeb43c60f26345aa88ddc8c (patch)
tree	700d3494027a7c66aeb5a7887bd1ab2d0057f848 /ssl/s2_pkt.c
parent	ee3b594a615e498a2832a4107529a335abe2afec (diff)
download	openssl-9f07ebd35233f1fb5eeb43c60f26345aa88ddc8c.tar.gz