Set next sequence of subject_alt_names to NULL

Set the next sequence of the subject_alt_name to NULL when deleting
sequence on failure in `get_subject_alt_name()`.
Found by Philippe Antoine. Credit to OSS-Fuzz.
This commit is contained in:
Ron Eldor 2019-05-22 16:41:21 +03:00
parent 31d1432233
commit 5aebeeb5f4
2 changed files with 4 additions and 0 deletions

View File

@ -46,6 +46,9 @@ Bugfix
for the parameter. for the parameter.
* Add a check for MBEDTLS_X509_CRL_PARSE_C in ssl_server2, guarding the crl * Add a check for MBEDTLS_X509_CRL_PARSE_C in ssl_server2, guarding the crl
sni entry parameter. Reported by inestlerode in #560. sni entry parameter. Reported by inestlerode in #560.
* Set the next sequence of the subject_alt_name to NULL when deleting
sequence on failure. Found and fix suggested by Philippe Antoine.
Credit to OSS-Fuzz.
API Changes API Changes
* Extend the MBEDTLS_SSL_EXPORT_KEYS to export the handshake randbytes, * Extend the MBEDTLS_SSL_EXPORT_KEYS to export the handshake randbytes,

View File

@ -681,6 +681,7 @@ static int x509_get_subject_alt_name( unsigned char **p,
sizeof( mbedtls_x509_sequence ) ); sizeof( mbedtls_x509_sequence ) );
mbedtls_free( seq_prv ); mbedtls_free( seq_prv );
} }
subject_alt_name->next = NULL;
return( ret ); return( ret );
} }