properly handle length-zero opaque PRF input values

(which are pointless, but still might occur)
2007-09-23 11:30:53 +00:00
parent 86d4bc3aea
commit 02c27b113c
2 changed files with 20 additions and 6 deletions
--- a/ssl/s3_lib.c
+++ b/ssl/s3_lib.c
@@ -2369,7 +2369,10 @@ long ssl3_ctrl(SSL *s, int cmd, long larg, void *parg)
 			}
 		if (s->tlsext_opaque_prf_input != NULL)
 			OPENSSL_free(s->tlsext_opaque_prf_input);
-		s->tlsext_opaque_prf_input = BUF_memdup(parg, (size_t)larg);
+		if ((size_t)larg == 0)
+			s->tlsext_opaque_prf_input = OPENSSL_malloc(1); /* dummy byte just to get non-NULL */
+		else
+			s->tlsext_opaque_prf_input = BUF_memdup(parg, (size_t)larg);
 		if (s->tlsext_opaque_prf_input != NULL)
 			{
 			s->tlsext_opaque_prf_input_len = (size_t)larg;