From 6d4d94f3d01869793bd7630bb286901b1b6ffcd0 Mon Sep 17 00:00:00 2001
From: lhuang04 <lhuang04@fb.com>
Date: Tue, 11 Jun 2024 12:37:02 -0700
Subject: [PATCH] Set psk to NULL in ssl_psk_remove -backpor to 3.6

Summary:
Backport [PR 9241](https://github.com/Mbed-TLS/mbedtls/pull/9241) to 3.6
branch.

Test Plan:

Reviewers:

Subscribers:

Tasks:

Tags:
Signed-off-by: lhuang04 <lhuang04@fb.com>
---
 library/ssl_tls.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index c2c2b6f795..dd39e81173 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -2243,6 +2243,7 @@ static void ssl_remove_psk(mbedtls_ssl_context *ssl)
         mbedtls_zeroize_and_free(ssl->handshake->psk,
                                  ssl->handshake->psk_len);
         ssl->handshake->psk_len = 0;
+        ssl->handshake->psk = NULL;
     }
 #endif /* MBEDTLS_USE_PSA_CRYPTO */
 }