1 files changed, 13 insertions, 14 deletions

diff --git a/src/lib/anastasis_backup.c b/src/lib/anastasis_backup.c
index a1f162a..b9981f0 100644
--- a/src/lib/anastasis_backup.c
+++ b/src/lib/anastasis_backup.c
@@ -729,9 +729,7 @@ ANASTASIS_secret_share (struct GNUNET_CURL_Context *ctx,
                         size_t core_secret_size)
 {
   struct ANASTASIS_SecretShare *ss;
-  struct ANASTASIS_CRYPTO_EncryptedMasterKeyP
-    encrypted_master_keys[GNUNET_NZL (policies_len)];
-  void *encrypted_core_secret;
+  struct ANASTASIS_CoreSecretEncryptionResult *cser;
   json_t *dec_policies;
   json_t *esc_methods;
   size_t recovery_document_size;
@@ -755,12 +753,10 @@ ANASTASIS_secret_share (struct GNUNET_CURL_Context *ctx,
 
     for (unsigned int i = 0; i < policies_len; i++)
       policy_keys[i] = policies[i]->policy_key;
-    ANASTASIS_CRYPTO_core_secret_encrypt (policy_keys,
-                                          policies_len,
-                                          core_secret,
-                                          core_secret_size,
-                                          &encrypted_core_secret,
-                                          encrypted_master_keys);
+    cser = ANASTASIS_CRYPTO_core_secret_encrypt (policy_keys,
+                                                 policies_len,
+                                                 core_secret,
+                                                 core_secret_size);
   }
   dec_policies = json_array ();
   GNUNET_assert (NULL != dec_policies);
@@ -780,8 +776,10 @@ ANASTASIS_secret_share (struct GNUNET_CURL_Context *ctx,
                    json_array_append_new (
                      dec_policies,
                      GNUNET_JSON_PACK (
-                       GNUNET_JSON_pack_data_auto ("master_key",
-                                                   &encrypted_master_keys[k]),
+                       GNUNET_JSON_pack_data_varsize ("master_key",
+                                                      cser->enc_master_keys[k],
+                                                      cser->enc_master_key_sizes
+                                                      [k]),
                        GNUNET_JSON_pack_array_steal ("uuids",
                                                      uuids),
                        GNUNET_JSON_pack_data_auto ("salt",
@@ -855,10 +853,11 @@ ANASTASIS_secret_share (struct GNUNET_CURL_Context *ctx,
       GNUNET_JSON_pack_array_steal ("escrow_methods",
                                     esc_methods),
       GNUNET_JSON_pack_data_varsize ("encrypted_core_secret",
-                                     encrypted_core_secret,
-                                     core_secret_size));
+                                     cser->enc_core_secret,
+                                     cser->enc_core_secret_size));
     GNUNET_assert (NULL != recovery_document);
-    GNUNET_free (encrypted_core_secret);
+    ANASTASIS_CRYPTO_destroy_encrypted_core_secret (cser);
+    cser = NULL;
 
     rd_str = json_dumps (recovery_document,
                          JSON_COMPACT | JSON_SORT_KEYS);