Only zeroize buffer if the buffer length is non-zero

2025-01-11 14:05:32 +00:00 · 2019-02-11 14:03:03 +00:00 · 2019-02-11 14:03:03 +00:00 · 8096cafa94
parent 8593bca7f8
commit 8096cafa94
1 changed files with 2 additions and 1 deletions
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@ -1235,7 +1235,8 @@ static psa_status_t psa_copy_key_material( const psa_key_slot_t *source,
    status = psa_import_key( target, source->type, buffer, length );

 exit:
-    mbedtls_platform_zeroize( buffer, buffer_size );
+    if( buffer_size != 0 )
+        mbedtls_platform_zeroize( buffer, buffer_size );
    mbedtls_free( buffer );
    return( status );
 }