Merge remote-tracking branch 'upstream-restricted/pr/402' into mbedtls-1.3-restricted

commit: 2bd6ca415b7178e5e0031f21e1475274543dd8f1 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Tue Nov 28 14:34:24 2017 +0100
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue Nov 28 14:34:24 2017 +0100
tree: d753ff732f9ed8595f5a26b829dcc73bf26d6b17
parent: d3dd8d21973eb90d8adb7f4ce882418394a50992 [diff]
parent: 27ce0b5ff19f44d89efea491cf7d538ee7354abf [diff]
diff --git a/ChangeLog b/ChangeLog
index 1a85af2..a47cdeb 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -13,6 +13,8 @@
    * Tighten should-be-constant-time memcmp against compiler optimizations.
    * Ensure that buffers are cleared after use if they contain sensitive data.
      Changes were introduced in multiple places in the library.
+   * Set PEM buffer to zero before freeing it, to avoid decoded private keys
+     being leaked to memory after release.
 
 Bugfix
    * Fix memory leak in ssl_set_hostname() when called multiple times.

diff --git a/library/pem.c b/library/pem.c
index 789a92d..fedbc5c 100644
--- a/library/pem.c
+++ b/library/pem.c

@@ -393,6 +393,8 @@
 
 void pem_free( pem_context *ctx )
 {
+    if ( ctx->buf != NULL )
+        polarssl_zeroize( ctx->buf, ctx->buflen );
     polarssl_free( ctx->buf );
     polarssl_free( ctx->info );
commit	2bd6ca415b7178e5e0031f21e1475274543dd8f1	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Nov 28 14:34:24 2017 +0100
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Nov 28 14:34:24 2017 +0100
tree	d753ff732f9ed8595f5a26b829dcc73bf26d6b17
parent	d3dd8d21973eb90d8adb7f4ce882418394a50992 [diff]
parent	27ce0b5ff19f44d89efea491cf7d538ee7354abf [diff]