summaryrefslogtreecommitdiffstats
path: root/lib/libssl/tls13_key_schedule.c
diff options
context:
space:
mode:
authorbeck <beck@openbsd.org>2018-11-13 01:25:13 +0000
committerbeck <beck@openbsd.org>2018-11-13 01:25:13 +0000
commit1200a20ad6d44e5bfe31ce27ec10c2c357b94eb2 (patch)
treec577a20db1841a15ee1706952d72e6e45b0ea73b /lib/libssl/tls13_key_schedule.c
parentFix pkey_ok to be less strange, and add cuve checks required for the EC ones (diff)
downloadwireguard-openbsd-1200a20ad6d44e5bfe31ce27ec10c2c357b94eb2.tar.xz
wireguard-openbsd-1200a20ad6d44e5bfe31ce27ec10c2c357b94eb2.zip
NULL out mdctx to prevent possible double free introduced in version 1.4
Spotted by maestre@, ok tb@
Diffstat (limited to 'lib/libssl/tls13_key_schedule.c')
-rw-r--r--lib/libssl/tls13_key_schedule.c3
1 files changed, 2 insertions, 1 deletions
diff --git a/lib/libssl/tls13_key_schedule.c b/lib/libssl/tls13_key_schedule.c
index af273d6d27e..8a0b3e8af45 100644
--- a/lib/libssl/tls13_key_schedule.c
+++ b/lib/libssl/tls13_key_schedule.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: tls13_key_schedule.c,v 1.6 2018/11/10 01:34:02 jsing Exp $ */
+/* $OpenBSD: tls13_key_schedule.c,v 1.7 2018/11/13 01:25:13 beck Exp $ */
/* Copyright (c) 2018, Bob Beck <beck@openbsd.org>
*
* Permission to use, copy, modify, and/or distribute this software for any
@@ -151,6 +151,7 @@ tls13_secrets_create(const EVP_MD *digest, int resumption)
if (!EVP_DigestFinal_ex(mdctx, secrets->empty_hash.data, &mdlen))
goto err;
EVP_MD_CTX_free(mdctx);
+ mdctx = NULL;
if (secrets->empty_hash.len != mdlen)
goto err;
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.