commit 1f311ed5870ea0a54f4f90c70f7056ed40d792c1
author Ron Eldor <Ron.Eldor@arm.com> Tue Oct 17 18:15:41 2017 +0300
committer Ron Eldor <Ron.Eldor@arm.com> Mon Oct 30 18:16:51 2017 +0200
tree bc81632a781dee81a3e1e359a0a60c75a1d5c724
parent 75ea35eac8a76252a9453f118d61112648b2bd1d

Backport 1.3:Fix crash when calling `mbedtls_ssl_cache_free` twice

Set `cache` to zero at the end of `mbedtls_ssl_cache_free` #1104

ChangeLog

diff --git a/ChangeLog b/ChangeLog
index 6a1be98..c8677e3 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -14,6 +14,8 @@
    * Fix leap year calculation in x509_date_is_valid() to ensure that invalid
      dates on leap years with 100 and 400 intervals are handled correctly. Found
      by Nicholas Wilson. #694
+   * Fix crash when calling mbedtls_ssl_cache_free() twice. Found by
+     MilenkoMitrovic, #1104
 
 = mbed TLS 1.3.21 branch released 2017-08-10
 

library/ssl_cache.c

diff --git a/library/ssl_cache.c b/library/ssl_cache.c
index 0c2df29..1cb71bf 100644
--- a/library/ssl_cache.c
+++ b/library/ssl_cache.c
@@ -44,6 +44,12 @@
 #define polarssl_free       free
 #endif
 
+
+/* Implementation that should never be optimized out by the compiler */
+static void polarssl_zeroize( void *v, size_t n ) {
+    volatile unsigned char *p = v; while( n-- ) *p++ = 0;
+}
+
 void ssl_cache_init( ssl_cache_context *cache )
 {
     memset( cache, 0, sizeof( ssl_cache_context ) );
@@ -324,6 +330,8 @@
 #if defined(POLARSSL_THREADING_C)
     polarssl_mutex_free( &cache->mutex );
 #endif
+
+    polarssl_zeroize( cache, sizeof(ssl_cache_context) );
 }
 
 #endif /* POLARSSL_SSL_CACHE_C */