upstream/openvpn
1
0
Fork 0
mirror of https://github.com/OpenVPN/openvpn.git synced 2026-06-09 08:59:57 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Bugfix: dangling pointer passed to pkcs11-helper

Browse source 
Github: Fixes OpenVPN/openvpn#323

Signed-off-by: Selva Nair <selva.nair@gmail.com>
Acked-by: Gert Doering <gert@greenie.muc.de>
Message-Id: <20230509170517.2637245-1-selva.nair@gmail.com>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg26640.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>
This commit is contained in:
Selva Nair 2023-05-09 13:05:17 -04:00 committed by Gert Doering
parent 9577ffe92f
commit f485074570
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/openvpn/pkcs11_openssl.c
View file

@ -165,6 +165,7 @@ xkey_pkcs11h_sign(void *handle, unsigned char *sig,
{
pkcs11h_certificate_t cert = handle;
CK_MECHANISM mech = {CKM_RSA_PKCS, NULL, 0}; /* default value */
CK_RSA_PKCS_PSS_PARAMS pss_params = {0};
unsigned char buf[EVP_MAX_MD_SIZE];
size_t buflen;
@ -203,7 +204,6 @@ xkey_pkcs11h_sign(void *handle, unsigned char *sig,
}
else if (!strcmp(sigalg.padmode, "pss"))
{
CK_RSA_PKCS_PSS_PARAMS pss_params = {0};
mech.mechanism = CKM_RSA_PKCS_PSS;
if (!set_pss_params(&pss_params, sigalg, cert))