From: Pauli <paul.dale@oracle.com>
Date: Wed, 20 Nov 2019 03:20:01 +0000 (+1000)
Subject: ECDSA: don't clear free memory after verify.
X-Git-Tag: openssl-3.0.0-alpha1~926
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=cff7d199e0dc51ae939de5fb7702aab2a9ef30fc;p=oweals%2Fopenssl.git

ECDSA: don't clear free memory after verify.

Verifications are public, there is no need to clear the used storage before
freeing it.

Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/10475)
---

diff --git a/crypto/ec/ecdsa_ossl.c b/crypto/ec/ecdsa_ossl.c
index 5593d5d68c..8de22ba910 100644
--- a/crypto/ec/ecdsa_ossl.c
+++ b/crypto/ec/ecdsa_ossl.c
@@ -344,7 +344,7 @@ int ossl_ecdsa_verify(int type, const unsigned char *dgst, int dgst_len,
         goto err;
     ret = ECDSA_do_verify(dgst, dgst_len, s, eckey);
  err:
-    OPENSSL_clear_free(der, derlen);
+    OPENSSL_free(der);
     ECDSA_SIG_free(s);
     return ret;
 }