diff options
author | ben <ben> | 2002-11-13 15:41:31 +0000 |
---|---|---|
committer | ben <ben> | 2002-11-13 15:41:31 +0000 |
commit | 9f07ebd35233f1fb5eeb43c60f26345aa88ddc8c (patch) | |
tree | 700d3494027a7c66aeb5a7887bd1ab2d0057f848 /ssl/s2_pkt.c | |
parent | ee3b594a615e498a2832a4107529a335abe2afec (diff) | |
download | openssl-9f07ebd35233f1fb5eeb43c60f26345aa88ddc8c.tar.gz |
Security fixes brought forward from 0.9.7.
Diffstat (limited to 'ssl/s2_pkt.c')
-rw-r--r-- | ssl/s2_pkt.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/ssl/s2_pkt.c b/ssl/s2_pkt.c index cf0aee2bd..d82f13761 100644 --- a/ssl/s2_pkt.c +++ b/ssl/s2_pkt.c @@ -113,6 +113,7 @@ #ifndef OPENSSL_NO_SSL2 #include <stdio.h> #include <errno.h> +#include "cryptlib.h" #define USE_SOCKETS static int read_n(SSL *s,unsigned int n,unsigned int max,unsigned int extend); @@ -247,6 +248,7 @@ static int ssl2_read_internal(SSL *s, void *buf, int len, int peek) else { mac_size=EVP_MD_size(s->read_hash); + OPENSSL_assert(mac_size <= MAX_MAC_SIZE); s->s2->mac_data=p; s->s2->ract_data= &p[mac_size]; if (s->s2->padding + mac_size > s->s2->rlength) |