Merge remote-tracking branch 'upstream-restricted/pr/401' into mbedtls-2.1-restricted

2025-01-23 06:31:06 +00:00 · 2017-11-28 14:24:15 +01:00 · 2017-11-28 14:24:15 +01:00 · 5a8fe053d8
parent 336b7de48a 070c809c79
commit 5a8fe053d8
2 changed files with 4 additions and 0 deletions
--- a/2
+++ b/2
@ -21,6 +21,8 @@ Security
   * Tighten should-be-constant-time memcmp against compiler optimizations.
   * Ensure that buffers are cleared after use if they contain sensitive data.
     Changes were introduced in multiple places in the library.
+   * Set PEM buffer to zero before freeing it, to avoid decoded private keys
+     being leaked to memory after release.

 Bugfix
   * Fix some invalid RSA-PSS signatures with keys of size 8N+1 that were
--- a/library/pem.c
+++ b/library/pem.c
@ -391,6 +391,8 @@ int mbedtls_pem_read_buffer( mbedtls_pem_context *ctx, const char *header, const

 void mbedtls_pem_free( mbedtls_pem_context *ctx )
 {
+    if( ctx->buf != NULL )
+        mbedtls_zeroize( ctx->buf, ctx->buflen );
    mbedtls_free( ctx->buf );
    mbedtls_free( ctx->info );