krb5: _krb5_pk_octetstring2key() fails to clear keydata

2025-11-16 16:19:27 -06:00
parent 7587003ec6
commit 69d214b519
1 changed files with 2 additions and 2 deletions
--- a/lib/krb5/crypto-pk.c
+++ b/lib/krb5/crypto-pk.c
@@ -97,7 +97,7 @@ _krb5_pk_octetstring2key(krb5_context context,
    EVP_MD_CTX_destroy(m);

    ret = krb5_random_to_key(context, type, keydata, keylen, key);
-    memset_s(keydata, sizeof(keylen), 0, sizeof(keylen));
+    memset_s(keydata, keylen, 0, keylen);
    free(keydata);
    return ret;
 }
@@ -288,7 +288,7 @@ _krb5_pk_kdf(krb5_context context,
    free(other.data);

    ret = krb5_random_to_key(context, enctype, keydata, keylen, key);
-    memset_s(keydata, sizeof(keylen), 0, sizeof(keylen));
+    memset_s(keydata, keylen, 0, keylen);
    free(keydata);

    return ret;