TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 754663f8c497c43f169638c3903e37b323b7c98f
commit754663f8c497c43f169638c3903e37b323b7c98f[log] [tgz]
authorHanno Becker <hanno.becker@arm.com>Wed Oct 25 16:08:19 2017 +0100
committerHanno Becker <hanno.becker@arm.com>Wed Oct 25 16:11:06 2017 +0100
tree2ede571a98ef7b7ffebf519bdbbbe6e5df7a3db3
parent0727ca41b7418378d6d063b8ade62b7437c98d0a [diff]
Fix information leak in ecp_gen_keypair_base

The function ecp_gen_keypair_base did not wipe the stack buffer used to
hold the private exponent before returning. This commit fixes this by not using
a stack buffer in the first place but instead calling mpi_fill_random directly
to acquire the necessary random MPI.
1 file changed
tree: 2ede571a98ef7b7ffebf519bdbbbe6e5df7a3db3
  1. configs/
  2. doxygen/
  3. include/
  4. library/
  5. programs/
  6. scripts/
  7. tests/
  8. visualc/
  9. .gitignore
  10. .travis.yml
  11. ChangeLog
  12. CMakeLists.txt
  13. DartConfiguration.tcl
  14. LICENSE
  15. Makefile
  16. README.rst