From 70737ca8275f6339c6c0495e6de6b9ca909c0222 Mon Sep 17 00:00:00 2001 From: Andrzej Kurek Date: Mon, 14 Jan 2019 05:37:13 -0500 Subject: [PATCH] ssl_tls: add key destruction upon generator failure --- library/ssl_tls.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/library/ssl_tls.c b/library/ssl_tls.c index d0fadfdc6c..cbb3c62a0c 100644 --- a/library/ssl_tls.c +++ b/library/ssl_tls.c @@ -550,7 +550,10 @@ static int tls_prf_generic( mbedtls_md_type_t md_type, status = psa_generator_abort( &generator ); if( status != PSA_SUCCESS ) + { + psa_destroy_key( master_slot ); return( MBEDTLS_ERR_SSL_HW_ACCEL_FAILED ); + } status = psa_destroy_key( master_slot ); if( status != PSA_SUCCESS )