Allow compile-time alternate to mbedtls_zeroize() Add a new macro MBEDTLS_UTILS_ZEROIZE that allows users to configure mbedtls_zeroize() to an alternative definition when defined. If the macro is not defined, then mbed TLS will use the default definition of the function.

commit: b1262a3bdb5ae7e478a04ec44143fbb4d9e9d16c [log] [tgz]
author: Andres Amaya Garcia <andres.amayagarcia@arm.com> Wed Oct 25 09:51:14 2017 +0100
committer: Andres Amaya Garcia <Andres.AmayaGarcia@arm.com> Tue Apr 17 09:19:05 2018 -0500
tree: 7acaba8f5f2096e5c969e71323c4db96e5ae41b3
parent: e32df087fb3193dbb2689354492a11464db3adb0 [diff]
diff --git a/include/mbedtls/config.h b/include/mbedtls/config.h
index 9585e69..8c35b86 100644
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h

@@ -2852,6 +2852,14 @@
  */
 #define MBEDTLS_TLS_DEFAULT_ALLOW_SHA1_IN_KEY_EXCHANGE
 
+/**
+ * \def MBEDTLS_UTILS_ZEROIZE_ALT
+ *
+ * Uncomment the macro to let mbed TLS use your alternate implementation of
+ * mbedtls_zeroize().
+ */
+//#define MBEDTLS_UTILS_ZEROIZE_ALT
+
 /* \} name SECTION: Customisation configuration options */
 
 /* Target and application specific configurations */
commit	b1262a3bdb5ae7e478a04ec44143fbb4d9e9d16c	[log] [tgz]
author	Andres Amaya Garcia <andres.amayagarcia@arm.com>	Wed Oct 25 09:51:14 2017 +0100
committer	Andres Amaya Garcia <Andres.AmayaGarcia@arm.com>	Tue Apr 17 09:19:05 2018 -0500
tree	7acaba8f5f2096e5c969e71323c4db96e5ae41b3
parent	e32df087fb3193dbb2689354492a11464db3adb0 [diff]