Improve CertVerifyProcOpenSSL robustness against malicious data

This patch allows OpenSSL certificate verification to fail gracefully when
preliminary initialization step fails, rather than crashing the browser.

BUG=165858


Review URL: https://chromiumcodereview.appspot.com/11572060

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@173459 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 5 insertions, 3 deletions

diff --git a/net/base/cert_verify_proc_openssl.cc b/net/base/cert_verify_proc_openssl.cc
index 122c7b4..b9cd0b1 100644
--- a/net/base/cert_verify_proc_openssl.cc
+++ b/net/base/cert_verify_proc_openssl.cc
@@ -188,9 +188,11 @@ int CertVerifyProcOpenSSL::VerifyInternal(X509Certificate* cert,
     if (!sk_X509_push(intermediates.get(), *it))
       return ERR_OUT_OF_MEMORY;
   }
-  int rv = X509_STORE_CTX_init(ctx.get(), X509Certificate::cert_store(),
-                               cert->os_cert_handle(), intermediates.get());
-  CHECK_EQ(1, rv);
+  if (X509_STORE_CTX_init(ctx.get(), X509Certificate::cert_store(),
+                          cert->os_cert_handle(), intermediates.get()) != 1) {
+    NOTREACHED();
+    return ERR_FAILED;
+  }
 
   if (X509_verify_cert(ctx.get()) != 1) {
     int x509_error = X509_STORE_CTX_get_error(ctx.get());