OpenSSL: Clean up TLS PRF implementation Commit fa0e715100b0e6fd956b6de67c3cdf908437436a ('Use tls_connection_prf() for all EAP TLS-based key derivation') copied some pointer checks from the generic implementation to tls_openssl.c. However, these are arrays and cannot be NULL in OpenSSL data. Remove the unnecessary checks and add master_key_length check for completeness. (CID 109619). Signed-off-by: Jouni Malinen <j@w1.fi>

commit: cb71a8342deae83ea2c86df4f3521f8b765c7f42 [log] [tgz]
author: Jouni Malinen <j@w1.fi> Sun Apr 19 20:34:12 2015 +0300
committer: Jouni Malinen <j@w1.fi> Wed Apr 22 11:17:26 2015 +0300
tree: fa7f940015b7e936b202380d1bd7fdcac460721c
parent: 7f90a234b6edf7644ac6fdaa4fab836ea0dec9f1 [diff]
diff --git a/src/crypto/tls_openssl.c b/src/crypto/tls_openssl.c
index 935add5..d3e9eb9 100644
--- a/src/crypto/tls_openssl.c
+++ b/src/crypto/tls_openssl.c

@@ -2703,8 +2703,7 @@
 		return -1;
 	ssl = conn->ssl;
 	if (ssl == NULL || ssl->s3 == NULL || ssl->session == NULL ||
-	    ssl->s3->client_random == NULL || ssl->s3->server_random == NULL ||
-	    ssl->session->master_key == NULL)
+	    ssl->session->master_key_length <= 0)
 		return -1;
 
 	if (skip_keyblock) {
commit	cb71a8342deae83ea2c86df4f3521f8b765c7f42	[log] [tgz]
author	Jouni Malinen <j@w1.fi>	Sun Apr 19 20:34:12 2015 +0300
committer	Jouni Malinen <j@w1.fi>	Wed Apr 22 11:17:26 2015 +0300
tree	fa7f940015b7e936b202380d1bd7fdcac460721c
parent	7f90a234b6edf7644ac6fdaa4fab836ea0dec9f1 [diff]