tls: don't copy the key out of tls12_crypto_info_aes_gcm_128

author Sabrina Dubroca <sd@queasysnail.net>

Wed, 12 Sep 2018 15:44:41 +0000 (17:44 +0200)

committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Sat, 29 Sep 2018 10:06:01 +0000 (03:06 -0700)
author Sabrina Dubroca <sd@queasysnail.net>
Wed, 12 Sep 2018 15:44:41 +0000 (17:44 +0200)
committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Sat, 29 Sep 2018 10:06:01 +0000 (03:06 -0700)
diff --git a/net/tls/tls_sw.c b/net/tls/tls_sw.c

index b81aa6d..7fd5e04 100644 (file)
--- a/net/tls/tls_sw.c
+++ b/net/tls/tls_sw.c
@@ -661,7 +661,6 @@ static void tls_sw_free_resources(struct sock *sk)
  
  int tls_set_sw_offload(struct sock *sk, struct tls_context *ctx)
  {
-       char keyval[TLS_CIPHER_AES_GCM_128_KEY_SIZE];
         struct tls_crypto_info *crypto_info;
         struct tls12_crypto_info_aes_gcm_128 *gcm_128_info;
         struct tls_sw_context *sw_ctx;
@@ -753,9 +752,7 @@ int tls_set_sw_offload(struct sock *sk, struct tls_context *ctx)
  
         ctx->push_pending_record = tls_sw_push_pending_record;
  
-       memcpy(keyval, gcm_128_info->key, TLS_CIPHER_AES_GCM_128_KEY_SIZE);
-
-       rc = crypto_aead_setkey(sw_ctx->aead_send, keyval,
+       rc = crypto_aead_setkey(sw_ctx->aead_send, gcm_128_info->key,
                                 TLS_CIPHER_AES_GCM_128_KEY_SIZE);
         if (rc)
                 goto free_aead;
author	Sabrina Dubroca <sd@queasysnail.net>
	Wed, 12 Sep 2018 15:44:41 +0000 (17:44 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sat, 29 Sep 2018 10:06:01 +0000 (03:06 -0700)