TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / a90a95bcbd19836417f68f4a864e8a09ec5024d0^! / . / library
commita90a95bcbd19836417f68f4a864e8a09ec5024d0[log] [tgz]
authorManuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>Wed Jun 17 12:40:57 2020 +0200
committerManuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>Wed Jun 17 12:40:57 2020 +0200
tree76ed46b631d9ba752e05d2a4ecfb306d05aa2d7d
parent2d91c30f4cbf6fa30735a8b6d995db7a3e889768 [diff]
Zeroize temporary stack buffer

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>

diff --git a/library/ecp.c b/library/ecp.c
index 91fbe3b..050a497 100644
--- a/library/ecp.c
+++ b/library/ecp.c

@@ -321,10 +321,10 @@
     ecp_drbg_context *ctx = p_rng;
     int ret;
     size_t len_done = 0;
+    uint8_t tmp[HASH_BLOCK_BYTES];
 
     while( len_done < output_len )
     {
-        uint8_t tmp[HASH_BLOCK_BYTES];
         uint8_t use_len;
 
         /* We don't need to draw more that 255 blocks, so don't bother with
@@ -346,6 +346,8 @@
         len_done += use_len;
     }
 
+    mbedtls_platform_zeroize( tmp, sizeof( tmp ) );
+
     return( 0 );
 }