Use plain memset() in context init functions We call xxx_init() on a structure when it has been freshly allocated (on the stack or heap). At this point it contains random-looking data none of which should be sensitive, as all sensitive data is wiped using mbedtls_platform_zeroize() when we're done using it and the memory area is going to be reclaimed (by exiting the function or free()ing the buffer).

commit: 994193326be25c29be2b525552db401d3e432067 [log] [tgz]
author: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Oct 03 10:40:57 2019 +0200
committer: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Tue Oct 22 10:03:07 2019 +0200
tree: 004e4ea1c7c18dbd6f65660d7c65342577bbeda0
parent: 14f33e74c0452afec9740ab49e501027fedb80eb [diff] [blame]
diff --git a/library/aes.c b/library/aes.c
index 4850fab..247bbde 100644
--- a/library/aes.c
+++ b/library/aes.c

@@ -519,7 +519,7 @@
 {
     AES_VALIDATE( ctx != NULL );
 
-    mbedtls_platform_memset( ctx, 0, sizeof( mbedtls_aes_context ) );
+    memset( ctx, 0, sizeof( mbedtls_aes_context ) );
 }
 
 void mbedtls_aes_free( mbedtls_aes_context *ctx )
commit	994193326be25c29be2b525552db401d3e432067	[log] [tgz]
author	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Thu Oct 03 10:40:57 2019 +0200
committer	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Tue Oct 22 10:03:07 2019 +0200
tree	004e4ea1c7c18dbd6f65660d7c65342577bbeda0
parent	14f33e74c0452afec9740ab49e501027fedb80eb [diff] [blame]