wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 02:37:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

ForceZero the devKey field of Aes in PKCS#11

Browse Source 
Don't memset the key field of AES in PKCS#11.
This commit is contained in:
Sean Parkinson
2019-02-21 08:22:56 +10:00
parent 520ae52ece
commit b0957c68fb
1 changed files with 4 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
wolfcrypt/src/wc_pkcs11.c
View File

@ -565,10 +565,8 @@ int wc_Pkcs11StoreKey(Pkcs11Token* token, int type, int clear, void* key)
(unsigned char *)aes->id, (unsigned char *)aes->id,
aes->idLen); aes->idLen);
} }
if (ret == 0 && clear) { if (ret == 0 && clear)
XMEMSET(aes->devKey, 0, aes->keylen); ForceZero(aes->devKey, 0, aes->keylen);
XMEMSET(aes->key, 0, aes->keylen);
}
break; break;
} }
#endif #endif
@ -584,10 +582,8 @@ int wc_Pkcs11StoreKey(Pkcs11Token* token, int type, int clear, void* key)
(unsigned char *)aes->id, (unsigned char *)aes->id,
aes->idLen); aes->idLen);
} }
if (ret == 0 && clear) { if (ret == 0 && clear)
XMEMSET(aes->devKey, 0, aes->keylen); ForceZero(aes->devKey, 0, aes->keylen);
XMEMSET(aes->key, 0, aes->keylen);
}
break; break;
} }
#endif #endif