commit c39a80daeefc0945024f4438be72b3be1cedf74f
author Gilles Peskine <gilles.peskine@arm.com> Mon May 11 21:59:07 2020 +0200
committer GitHub <noreply@github.com> Mon May 11 21:59:07 2020 +0200
tree 64621b4146ae6d42a0c110f6a77aed508da6260a
parent 1a4a3f592442a7a8f689dfa3e7bfd2c1857c48d0
parent c64b72394dd3c7fe8003bcd25720741b378bf339

Merge pull request #3312 from sander-visser/cleanup-nullptr-deref

Scope reduction to enable NULL check to protect dereferencing.

ChangeLog.d/fix-masked-hw-record-init-error.txt

diff --git a/ChangeLog.d/fix-masked-hw-record-init-error.txt b/ChangeLog.d/fix-masked-hw-record-init-error.txt
new file mode 100644
index 0000000..2ef80da
--- /dev/null
+++ b/ChangeLog.d/fix-masked-hw-record-init-error.txt
@@ -0,0 +1,3 @@
+Bugfix
+   * Fix issue with a detected HW accelerated record error not being exposed
+     due to shadowed variable. Contributed by Sander Visser in #3310.

library/ssl_tls.c

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index bbbe80f..fd0c8a7 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -863,7 +863,7 @@
     unsigned char *key2;
     unsigned char *mac_enc;
     unsigned char *mac_dec;
-    size_t mac_key_len;
+    size_t mac_key_len = 0;
     size_t iv_copy_len;
     unsigned keylen;
     const mbedtls_ssl_ciphersuite_t *ciphersuite_info;
@@ -1175,7 +1175,7 @@
 #if defined(MBEDTLS_SSL_HW_RECORD_ACCEL)
     if( mbedtls_ssl_hw_record_init != NULL )
     {
-        int ret = 0;
+        ret = 0;
 
         MBEDTLS_SSL_DEBUG_MSG( 2, ( "going for mbedtls_ssl_hw_record_init()" ) );