cryoto: drbg - clear all temporary memory

The buffer uses for temporary data must be cleared entirely. In AES192 the used buffer is drbg_statelen(drbg) + drbg_blocklen(drbg) as documented in the comment above drbg_ctr_df. This patch ensures that the temp buffer is completely wiped. Signed-off-by: N Stephan Mueller <smueller@chronox.de> Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au>

cryoto: drbg - clear all temporary memory
The buffer uses for temporary data must be cleared entirely. In AES192 the used buffer is drbg_statelen(drbg) + drbg_blocklen(drbg) as documented in the comment above drbg_ctr_df. This patch ensures that the temp buffer is completely wiped. Signed-off-by: N Stephan Mueller <smueller@chronox.de> Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au>
8e0498d9 · Stephan Mueller · Herbert Xu · 1a92b2ba · 8e0498d9
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

crypto/drbg.c crypto/drbg.c +1 -1

未找到文件。
--- a/crypto/drbg.c
+++ b/crypto/drbg.c
@@ -487,7 +487,7 @@ static int drbg_ctr_df(struct drbg_state *drbg,

 out:
 	memset(iv, 0, drbg_blocklen(drbg));
-	memset(temp, 0, drbg_statelen(drbg));
+	memset(temp, 0, drbg_statelen(drbg) + drbg_blocklen(drbg));
 	memset(pad, 0, drbg_blocklen(drbg));
 	return ret;
 }