projects
/
openssl.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Only zeroise sensitive parts of DRBG context, so the type and flags
[openssl.git]
/
fips
/
rand
/
fips_drbg_selftest.c
diff --git
a/fips/rand/fips_drbg_selftest.c
b/fips/rand/fips_drbg_selftest.c
index c46fe58521c706a6bd5cbd4dd671d7be1e56097f..d1f9dd118be9683386fad09221e2989071e4d7e5 100644
(file)
--- a/
fips/rand/fips_drbg_selftest.c
+++ b/
fips/rand/fips_drbg_selftest.c
@@
-954,11
+954,11
@@
static int fips_drbg_health_check(DRBG_CTX *dctx, DRBG_SELFTEST_DATA *td)
}
FIPS_drbg_uninstantiate(dctx);
}
FIPS_drbg_uninstantiate(dctx);
- p = (unsigned char *)
dctx
;
+ p = (unsigned char *)
&dctx->d
;
/* Standard says we have to check uninstantiate really zeroes
* the data...
*/
/* Standard says we have to check uninstantiate really zeroes
* the data...
*/
- for (i = 0; i < sizeof(
DRBG_CTX
); i++)
+ for (i = 0; i < sizeof(
dctx->d
); i++)
{
if (*p != 0)
{
{
if (*p != 0)
{
@@
-980,7
+980,7
@@
static int fips_drbg_health_check(DRBG_CTX *dctx, DRBG_SELFTEST_DATA *td)
return 0;
}
return 0;
}
-
+
int fips_drbg_kat(DRBG_CTX *dctx, int nid, unsigned int flags)
{
int fips_drbg_kat(DRBG_CTX *dctx, int nid, unsigned int flags)
{