Merge pull request #8144 from daverodgman/zeroize-stronger Add more protection to mbedtls_platform_zeroize

commit: 662c497395c01f083e11f3463b14b001ce874e2b [log] [tgz]
author: Dave Rodgman <dave.rodgman@arm.com> Sat Sep 02 10:59:12 2023 +0100
committer: GitHub <noreply@github.com> Sat Sep 02 10:59:12 2023 +0100
tree: 90208f500299a27a900c1876cae4b7af6db216a3
parent: 16a76721b6475cd2fbb0f0f6340fdaadef1cd27a [diff]
parent: fe55320b5c5563ff8bc62a8eb64d681e8a26905e [diff]
diff --git a/library/platform_util.c b/library/platform_util.c
index 63b7c41..09216ed 100644
--- a/library/platform_util.c
+++ b/library/platform_util.c

@@ -126,6 +126,26 @@
 #else
         memset_func(buf, 0, len);
 #endif
+
+#if defined(__GNUC__)
+        /* For clang and recent gcc, pretend that we have some assembly that reads the
+         * zero'd memory as an additional protection against being optimised away. */
+#if defined(__clang__) || (__GNUC__ >= 10)
+#if defined(__clang__)
+#pragma clang diagnostic push
+#pragma clang diagnostic ignored "-Wvla"
+#elif defined(MBEDTLS_COMPILER_IS_GCC)
+#pragma GCC diagnostic push
+#pragma GCC diagnostic ignored "-Wvla"
+#endif
+        asm volatile ("" : : "m" (*(char (*)[len]) buf) :);
+#if defined(__clang__)
+#pragma clang diagnostic pop
+#elif defined(MBEDTLS_COMPILER_IS_GCC)
+#pragma GCC diagnostic pop
+#endif
+#endif
+#endif
     }
 }
 #endif /* MBEDTLS_PLATFORM_ZEROIZE_ALT */
commit	662c497395c01f083e11f3463b14b001ce874e2b	[log] [tgz]
author	Dave Rodgman <dave.rodgman@arm.com>	Sat Sep 02 10:59:12 2023 +0100
committer	GitHub <noreply@github.com>	Sat Sep 02 10:59:12 2023 +0100
tree	90208f500299a27a900c1876cae4b7af6db216a3
parent	16a76721b6475cd2fbb0f0f6340fdaadef1cd27a [diff]
parent	fe55320b5c5563ff8bc62a8eb64d681e8a26905e [diff]