From 7a9d3db51499a6492ddc1d8d2fbca897a4a0590f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20Kin=C4=8Dl?= <mkincl@ra.rockwell.com>
Date: Thu, 16 May 2019 16:37:31 +0200
Subject: [PATCH] Fixed use of uninitialized value in wc_BufferKeyDecrypt.

---
 wolfcrypt/src/wc_encrypt.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/wolfcrypt/src/wc_encrypt.c b/wolfcrypt/src/wc_encrypt.c
index 929822b8f..373b6b938 100644
--- a/wolfcrypt/src/wc_encrypt.c
+++ b/wolfcrypt/src/wc_encrypt.c
@@ -272,6 +272,8 @@ int wc_BufferKeyDecrypt(EncryptedInfo* info, byte* der, word32 derSz,
     }
 #endif
 
+    (void)XMEMSET(key, 0, WC_MAX_SYM_KEY_SIZE);
+
 #ifndef NO_PWDBASED
     if ((ret = wc_PBKDF1(key, password, passwordSz, info->iv, PKCS5_SALT_SZ, 1,
                                         info->keySz, hashType)) != 0) {