git.openssl.org Git - openssl.git/commit

author	Matt Caswell <matt@openssl.org>
	Wed, 16 Sep 2015 09:47:15 +0000 (10:47 +0100)
committer	Matt Caswell <matt@openssl.org>
	Thu, 17 Sep 2015 21:35:47 +0000 (22:35 +0100)
commit	9203e92c4b601491eab8ca03f4e7cac530f84393
tree	c1e618c92ddc7289a09df59b59c26fd353af828e	tree \| snapshot
parent	df32994cf0dbaefef8187b60785eb615735d7be1	commit \| diff

Make sure OPENSSL_cleanse checks for NULL

In master we have the function OPENSSL_clear_free(x,y), which immediately
returns if x == NULL. In <=1.0.2 this function does not exist so we have to
do:
OPENSSL_cleanse(x, y);
OPENSSL_free(x);

However, previously, OPENSSL_cleanse did not check that if x == NULL, so
the real equivalent check would have to be:
if (x != NULL)
OPENSSL_cleanse(x, y);
OPENSSL_free(x);

It would be easy to get this wrong during cherry-picking to other branches
and therefore, for safety, it is best to just ensure OPENSSL_cleanse also
checks for NULL.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(cherry picked from commit 020d8fc83fe1a94232db1ee1166309e2458a8a18)