hkdf zeroization fix

author Shane Lontis <shane.lontis@oracle.com>

Tue, 4 Sep 2018 04:01:37 +0000 (14:01 +1000)

committer Pauli <paul.dale@oracle.com>

Tue, 4 Sep 2018 19:21:46 +0000 (05:21 +1000)
author Shane Lontis <shane.lontis@oracle.com>
Tue, 4 Sep 2018 04:01:37 +0000 (14:01 +1000)
committer Pauli <paul.dale@oracle.com>
Tue, 4 Sep 2018 19:21:46 +0000 (05:21 +1000)
diff --git a/crypto/kdf/hkdf.c b/crypto/kdf/hkdf.c

index baaa16f0b7dd0013f71081048070d0b610c96533..ec6090ad6a7b723c5c557f53f98b106f39daaf06 100644 (file)
--- a/crypto/kdf/hkdf.c
+++ b/crypto/kdf/hkdf.c
@@ -281,6 +281,7 @@ static unsigned char *HKDF_Expand(const EVP_MD *evp_md,
                                    unsigned char *okm, size_t okm_len)
  {
      HMAC_CTX *hmac;
+    unsigned char *ret = NULL;
  
      unsigned int i;
  
@@ -330,11 +331,10 @@ static unsigned char *HKDF_Expand(const EVP_MD *evp_md,
  
          done_len += copy_len;
      }
-
-    HMAC_CTX_free(hmac);
-    return okm;
+    ret = okm;
  
   err:
+    OPENSSL_cleanse(prev, sizeof(prev));
      HMAC_CTX_free(hmac);
-    return NULL;
+    return ret;
  }
author	Shane Lontis <shane.lontis@oracle.com>
	Tue, 4 Sep 2018 04:01:37 +0000 (14:01 +1000)
committer	Pauli <paul.dale@oracle.com>
	Tue, 4 Sep 2018 19:21:46 +0000 (05:21 +1000)