From 789268e1b9320a0757fe3c191767b155aedd351d Mon Sep 17 00:00:00 2001
From: Florian Dold <florian@dold.me>
Date: Tue, 19 Oct 2021 13:59:42 +0200
Subject: kdf: zero out salt correctly

---
 src/util/crypto_hkdf.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'src/util')

diff --git a/src/util/crypto_hkdf.c b/src/util/crypto_hkdf.c
index ba3626e1a..4e4496819 100644
--- a/src/util/crypto_hkdf.c
+++ b/src/util/crypto_hkdf.c
@@ -116,7 +116,8 @@ getPRK (gcry_md_hd_t mac, const void *xts, size_t xts_len, const void *skm,
 
   if (xts_len == 0)
   {
-    char zero_salt[dlen] = { 0 };
+    char zero_salt[dlen];
+    memset (zero_salt, 0, dlen);
     ret = doHMAC (mac, zero_salt, dlen, skm, skm_len);
   }
   else
-- 
cgit v1.2.3