mbedtls_pk_parse_key: don't allocate if not needed mbedtls_pk_parse_key() makes a temporary copy of the key when it calls pk_parse_key_pkcs8_encrypted_der(), because that function requires a writable buffer. pk_parse_key_pkcs8_encrypted_der() always rejects an empty password, so skip calling it in that case, which allows us to skip the allocation as well. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 0ca219575ad7059235a5edb91cf834fc70be9c53 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Dec 10 17:36:37 2021 +0100
committer: Gilles Peskine <Gilles.Peskine@arm.com> Fri Dec 10 17:36:37 2021 +0100
tree: e2c8c023216da9fa89b77baeb5200edcce5f1147
parent: d5b2a59826d98e89622df3a845937828db9efff8 [diff] [blame]
diff --git a/library/pkparse.c b/library/pkparse.c
index b2d3bb0..22dab3a 100644
--- a/library/pkparse.c
+++ b/library/pkparse.c

@@ -1343,6 +1343,7 @@
      * error
      */
 #if defined(MBEDTLS_PKCS12_C) || defined(MBEDTLS_PKCS5_C)
+    if( pwdlen != 0 )
     {
         unsigned char *key_copy;
commit	0ca219575ad7059235a5edb91cf834fc70be9c53	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Dec 10 17:36:37 2021 +0100
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Dec 10 17:36:37 2021 +0100
tree	e2c8c023216da9fa89b77baeb5200edcce5f1147
parent	d5b2a59826d98e89622df3a845937828db9efff8 [diff] [blame]