Avoid unneeded temporary stack buffer; remove redundant check

mattia-moffa · mattia-moffa · commit 807214dc559c · 2026-04-17T19:32:23.000+02:00
diff --git a/src/ocsp.c b/src/ocsp.c
@@ -759,7 +759,7 @@ int wolfSSL_OCSP_resp_find_status(WOLFSSL_OCSP_BASICRESP *bs,
         single = single->next;
     }
 
-    if (single == NULL || single->status == NULL)
+    if (single == NULL)
         return WOLFSSL_FAILURE;
 
     if (status != NULL)
diff --git a/wolfcrypt/src/evp.c b/wolfcrypt/src/evp.c
@@ -4317,19 +4317,17 @@ int wolfSSL_EVP_SignFinal(WOLFSSL_EVP_MD_CTX *ctx, unsigned char *sigret,
 #ifndef NO_DSA
     case WC_EVP_PKEY_DSA: {
         int bytes;
-        unsigned char tmpSig[DSA_MAX_SIG_SIZE];
-        ret = wolfSSL_DSA_do_sign(md, tmpSig, pkey->dsa);
-        /* wolfSSL_DSA_do_sign() can return WOLFSSL_FATAL_ERROR */
-        if (ret != WOLFSSL_SUCCESS)
-            return ret;
         bytes = wolfSSL_BN_num_bytes(pkey->dsa->q);
         if (bytes == WC_NO_ERR_TRACE(WOLFSSL_FAILURE) ||
             bytes > DSA_MAX_HALF_SIZE ||
             bytes * 2 > (int)*siglen)
         {
             return WOLFSSL_FAILURE;
         }
-        XMEMCPY(sigret, tmpSig, bytes * 2);
+        ret = wolfSSL_DSA_do_sign(md, sigret, pkey->dsa);
+        /* wolfSSL_DSA_do_sign() can return WOLFSSL_FATAL_ERROR */
+        if (ret != WOLFSSL_SUCCESS)
+            return ret;
         *siglen = (unsigned int)(bytes * 2);
         return WOLFSSL_SUCCESS;
     }

Original file line number	Diff line number	Diff line change
`@@ -759,7 +759,7 @@ int wolfSSL_OCSP_resp_find_status(WOLFSSL_OCSP_BASICRESP *bs,`
`759`	`759`	`single = single->next;`
`760`	`760`	`}`
`761`	`761`
`762`		`- if (single == NULL \|\| single->status == NULL)`
	`762`	`+ if (single == NULL)`
`763`	`763`	`return WOLFSSL_FAILURE;`
`764`	`764`
`765`	`765`	`if (status != NULL)`