Zeroize pake password buffer before free Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>

commit: 369ae0afc35079979d32b93ba824898a23e1f733 [log] [tgz]
author: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Thu Nov 17 14:14:31 2022 +0100
committer: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Thu Nov 17 14:14:31 2022 +0100
tree: 03431dee23fc429b690cfea89e0fa417aab80511
parent: 152ae07682a7c7630b03fc2337721b4b0a19df01 [diff]
diff --git a/library/psa_crypto_pake.c b/library/psa_crypto_pake.c
index b899548..ef31af4 100644
--- a/library/psa_crypto_pake.c
+++ b/library/psa_crypto_pake.c

@@ -288,6 +288,7 @@
 
     if( operation->password != NULL )
     {
+        mbedtls_platform_zeroize( operation->password, operation->password_len );
         mbedtls_free( operation->password );
         operation->password_len = 0;
     }
@@ -864,6 +865,7 @@
     {
         operation->input_step = PSA_PAKE_STEP_INVALID;
         operation->output_step = PSA_PAKE_STEP_INVALID;
+        mbedtls_platform_zeroize( operation->password, operation->password_len );
         mbedtls_free( operation->password );
         operation->password = NULL;
         operation->password_len = 0;
commit	369ae0afc35079979d32b93ba824898a23e1f733	[log] [tgz]
author	Przemek Stekiel <przemyslaw.stekiel@mobica.com>	Thu Nov 17 14:14:31 2022 +0100
committer	Przemek Stekiel <przemyslaw.stekiel@mobica.com>	Thu Nov 17 14:14:31 2022 +0100
tree	03431dee23fc429b690cfea89e0fa417aab80511
parent	152ae07682a7c7630b03fc2337721b4b0a19df01 [diff]