Merge pull request #3850 from AndrzejKurek/ccm-clean-temp-data ccm - clean temp data

commit: 9b92865bcdfba466fb9fdd695551fec09d8c910d [log] [tgz]
author: Andrzej Kurek <andrzej.kurek@arm.com> Wed Nov 25 11:14:05 2020 -0500
committer: GitHub <noreply@github.com> Wed Nov 25 11:14:05 2020 -0500
tree: 9be92ded7eaf8fe32c3bf3bb12bc411e73470b55
parent: 549a35690c1a22a3ba19e02dfa63a5ce97685057 [diff]
parent: 142f09fb96b3dc228bbbea92906813f41e292064 [diff]
diff --git a/library/ccm.c b/library/ccm.c
index 87fe16d..aa15af2 100644
--- a/library/ccm.c
+++ b/library/ccm.c

@@ -246,6 +246,10 @@
     if( add_len > 0xFF00 )
         return( MBEDTLS_ERR_CCM_BAD_INPUT );
 
+    mbedtls_platform_zeroize( b, 16 );
+    mbedtls_platform_zeroize( y, 16 );
+    mbedtls_platform_zeroize( ctr, 16 );
+
     q = (uint_fast8_t) (16 - 1 - iv_len);
 
     /*
@@ -390,6 +394,10 @@
     CTR_CRYPT( y, y, 16 );
     mbedtls_platform_memcpy( tag, y, tag_len );
 
+    mbedtls_platform_zeroize( b, 16 );
+    mbedtls_platform_zeroize( y, 16 );
+    mbedtls_platform_zeroize( ctr, 16 );
+
     return( ret );
 }
commit	9b92865bcdfba466fb9fdd695551fec09d8c910d	[log] [tgz]
author	Andrzej Kurek <andrzej.kurek@arm.com>	Wed Nov 25 11:14:05 2020 -0500
committer	GitHub <noreply@github.com>	Wed Nov 25 11:14:05 2020 -0500
tree	9be92ded7eaf8fe32c3bf3bb12bc411e73470b55
parent	549a35690c1a22a3ba19e02dfa63a5ce97685057 [diff]
parent	142f09fb96b3dc228bbbea92906813f41e292064 [diff]