Commit 8e0498d9 authored Apr 17, 2015 by Stephan Mueller Committed by Herbert Xu Apr 21, 2015

cryoto: drbg - clear all temporary memory



The buffer uses for temporary data must be cleared entirely. In AES192
the used buffer is drbg_statelen(drbg) + drbg_blocklen(drbg) as
documented in the comment above drbg_ctr_df.

This patch ensures that the temp buffer is completely wiped.

Signed-off-by: Stephan Mueller <smueller@chronox.de>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

parent 1a92b2ba

crypto/drbg.c

+1 −1

Original line number	Original line	Diff line number	Diff line
	@@ -487,7 +487,7 @@ static int drbg_ctr_df(struct drbg_state *drbg,

	out:		out:
	memset(iv, 0, drbg_blocklen(drbg));		memset(iv, 0, drbg_blocklen(drbg));
	memset(temp, 0, drbg_statelen(drbg));		memset(temp, 0, drbg_statelen(drbg) + drbg_blocklen(drbg));
	memset(pad, 0, drbg_blocklen(drbg));		memset(pad, 0, drbg_blocklen(drbg));
	return ret;		return ret;
	}		}