Harden tls12_finished_verify_data() by checking master key length.
authorjsing <jsing@openbsd.org>
Sun, 2 May 2021 15:57:29 +0000 (15:57 +0000)
committerjsing <jsing@openbsd.org>
Sun, 2 May 2021 15:57:29 +0000 (15:57 +0000)
commitf55f2bcfa8ecd36582506743c67f10f1d06e41c8
tree879ac74174bd5004f6a479f677c6bcfeec846107
parente22ac56793c7c598bb53a1bffdbcba86a424bf2e
Harden tls12_finished_verify_data() by checking master key length.

Require master key length to be greater than zero if we're asked to derive
verify data for a finished or peer finished message.

ok tb@
lib/libssl/tls12_lib.c