feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

src/tls13.c: in DoTls13CertificateVerify(), add missing error handling in several calls to CreateSigData().

Browse Source
This commit is contained in:
Daniel Pouzzner
2024-01-19 11:12:23 -06:00
parent ac81d9d29c
commit 9aa99c0c9a
1 changed files with 11 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
src/tls13.c
View File

@ -9882,8 +9882,9 @@ static int DoTls13CertificateVerify(WOLFSSL* ssl, byte* input,
ERROR_OUT(MEMORY_E, exit_dcv);
}
CreateSigData(ssl, args->sigData, &args->sigDataSz, 1);
ret = 0;
ret = CreateSigData(ssl, args->sigData, &args->sigDataSz, 1);
if (ret < 0)
goto exit_dcv;
}
#endif
#ifdef HAVE_ED448
@ -9896,8 +9897,9 @@ static int DoTls13CertificateVerify(WOLFSSL* ssl, byte* input,
ERROR_OUT(MEMORY_E, exit_dcv);
}
CreateSigData(ssl, args->sigData, &args->sigDataSz, 1);
ret = 0;
ret = CreateSigData(ssl, args->sigData, &args->sigDataSz, 1);
if (ret < 0)
goto exit_dcv;
}
#endif
#ifdef HAVE_PQC
@ -9909,7 +9911,11 @@ static int DoTls13CertificateVerify(WOLFSSL* ssl, byte* input,
ERROR_OUT(MEMORY_E, exit_dcv);
}
CreateSigData(ssl, sigData, &sigDataSz, 1);
ret = CreateSigData(ssl, sigData, &sigDataSz, 1);
if (ret < 0) {
goto exit_dcv;
}
#ifdef WOLFSSL_DUAL_ALG_CERTS
if (!wolfSSL_is_server(ssl) &&
ssl->sigSpec != NULL &&