CVSROOT: /cvs Module name: src Changes by: m...@cvs.openbsd.org 2014/06/04 15:05:30
Modified files:
lib/libssl/src/ssl: t1_lib.c
Log message:
Sanitize use of client_opaque_prf_input: set it to NULL immediately after
free()ing it, rather than in conditional code.
Also do not bother setting server_opaque_prf_input (server, not client) to
NULL in conditional code 10 lines after explicitely free()ing it and setting
it to NULL (were the developers afraid of zombie pointers?)
ok guenther@
