From 64f0e093163935b105a845a3abcb26fa16cd608b Mon Sep 17 00:00:00 2001
From: Andres Amaya Garcia <andres.amayagarcia@arm.com>
Date: Mon, 26 Jun 2017 11:20:02 +0100
Subject: [PATCH] Zeroize tmp buf in mbedtls_mpi_fill_random()

---
 library/bignum.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/library/bignum.c b/library/bignum.c
index 52edd3def..142aeaca2 100644
--- a/library/bignum.c
+++ b/library/bignum.c
@@ -1877,6 +1877,8 @@ int mbedtls_mpi_fill_random( mbedtls_mpi *X, size_t size,
     MBEDTLS_MPI_CHK( mbedtls_mpi_read_binary( X, buf, size ) );
 
 cleanup:
+    mbedtls_zeroize( buf, sizeof( buf ) );
+
     return( ret );
 }