jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

TLS client: Fix peer certificate event checking for probing

Browse source 
conn->cred might be NULL here, so check for that explicitly before
checking whether conn->cred->cert_probe is set. This fixes a potential
NULL pointer dereference when going through peer certificates with
event_cb functionality enabled.

Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen 2019-02-09 16:10:47 +02:00
parent e5bffe1aa9
commit fdd8a2f0b8
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/tls/tlsv1_client_read.c
View file

@ -290,7 +290,7 @@ static void tls_peer_cert_event(struct tlsv1_client *conn, int depth,
return; return;
os_memset(&ev, 0, sizeof(ev)); os_memset(&ev, 0, sizeof(ev));
if (conn->cred->cert_probe || conn->cert_in_cb) { if ((conn->cred && conn->cred->cert_probe) || conn->cert_in_cb) {
cert_buf = wpabuf_alloc_copy(cert->cert_start, cert_buf = wpabuf_alloc_copy(cert->cert_start,
cert->cert_len); cert->cert_len);
ev.peer_cert.cert = cert_buf; ev.peer_cert.cert = cert_buf;