Make sure we free and cleanse the pms value in all code paths

Otherwise we get a memory leak. Reviewed-by: N Kurt Roeckx <kurt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2326)

Make sure we free and cleanse the pms value in all code paths
Otherwise we get a memory leak. Reviewed-by: N Kurt Roeckx <kurt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2326)
c8ab3a46 · Matt Caswell · 787ebcaf · c8ab3a46
隐藏空白更改
内联并排

Showing with 1 addition and 3 deletion

ssl/s3_lib.c ssl/s3_lib.c +1 -3

未找到文件。
--- a/ssl/s3_lib.c
+++ b/ssl/s3_lib.c
@@ -4118,10 +4118,8 @@ int ssl_derive(SSL *s, EVP_PKEY *privkey, EVP_PKEY *pubkey, int gensecret)

            rv = rv && tls13_generate_handshake_secret(s, pms, pmslen);
        } else {
-            /* Generate master secret and discard premaster */
-            rv = ssl_generate_master_secret(s, pms, pmslen, 1);
+            rv = ssl_generate_master_secret(s, pms, pmslen, 0);
        }
-        pms = NULL;
    } else {
        /* Save premaster secret */
        s->s3->tmp.pms = pms;