dns: Do NULL checks in dns_sign_tsig

Signed-off-by: Volker Lendecke <vl@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>

diff --git a/source4/dns_server/dns_crypto.c b/source4/dns_server/dns_crypto.c
index 740e1e4dd533747366ff494e15b179c9065790d5..8c7502628d51173c2f898b2b185a138f3b0dbb68 100644 (file)
--- a/source4/dns_server/dns_crypto.c
+++ b/source4/dns_server/dns_crypto.c
@@ -393,6 +393,9 @@ WERROR dns_sign_tsig(struct dns_server *dns,
        tsig->ttl = 0;
        tsig->length = UINT16_MAX;
        tsig->rdata.tsig_record.algorithm_name = talloc_strdup(tsig, "gss-tsig");
+       if (tsig->rdata.tsig_record.algorithm_name == NULL) {
+               return WERR_NOT_ENOUGH_MEMORY;
+       }
        tsig->rdata.tsig_record.time_prefix = 0;
        tsig->rdata.tsig_record.time = current_time;
        tsig->rdata.tsig_record.fudge = 300;
@@ -403,6 +406,9 @@ WERROR dns_sign_tsig(struct dns_server *dns,
        if (sig.length > 0) {
                tsig->rdata.tsig_record.mac_size = sig.length;
                tsig->rdata.tsig_record.mac = talloc_memdup(tsig, sig.data, sig.length);
+               if (tsig->rdata.tsig_record.mac == NULL) {
+                       return WERR_NOT_ENOUGH_MEMORY;
+               }
        }
 
        if (packet->arcount == 0) {