Free other secret in tls12_prf context Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>

commit: e3ee22189313674684d955c34e04bde2691089e8 [log] [tgz]
author: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Thu Apr 07 14:29:56 2022 +0200
committer: Przemek Stekiel <przemyslaw.stekiel@mobica.com> Thu Apr 07 15:41:56 2022 +0200
tree: bdad2ae977c7bb39d20cade1e41eb1aec8f6bd26
parent: 23650286ac8cbc0e278d0252b09017cc1570c880 [diff] [blame]
diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index 8c58ff5..f3a2258 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c

@@ -4315,6 +4315,13 @@
             mbedtls_free( operation->ctx.tls12_prf.label );
         }
 
+        if( operation->ctx.tls12_prf.other_secret != NULL )
+        {
+            mbedtls_platform_zeroize( operation->ctx.tls12_prf.other_secret,
+                                      operation->ctx.tls12_prf.other_secret_length );
+            mbedtls_free( operation->ctx.tls12_prf.other_secret );
+        }
+
         status = PSA_SUCCESS;
 
         /* We leave the fields Ai and output_block to be erased safely by the
commit	e3ee22189313674684d955c34e04bde2691089e8	[log] [tgz]
author	Przemek Stekiel <przemyslaw.stekiel@mobica.com>	Thu Apr 07 14:29:56 2022 +0200
committer	Przemek Stekiel <przemyslaw.stekiel@mobica.com>	Thu Apr 07 15:41:56 2022 +0200
tree	bdad2ae977c7bb39d20cade1e41eb1aec8f6bd26
parent	23650286ac8cbc0e278d0252b09017cc1570c880 [diff] [blame]