diff options
| author | jsing <> | 2025-07-20 08:55:49 +0000 |
|---|---|---|
| committer | jsing <> | 2025-07-20 08:55:49 +0000 |
| commit | a000fa8e43ffc48c5e770f5759e0cc957e5dda2f (patch) | |
| tree | a9e7701e847e3e2ac6c05fe0a223eadaa6fc2a18 | |
| parent | 5bda22f8b192be0ca89fda49ed0e53cf93ab553f (diff) | |
| download | openbsd-a000fa8e43ffc48c5e770f5759e0cc957e5dda2f.tar.gz openbsd-a000fa8e43ffc48c5e770f5759e0cc957e5dda2f.tar.bz2 openbsd-a000fa8e43ffc48c5e770f5759e0cc957e5dda2f.zip | |
Zero stack based IV and buffer when aes_ctr32_encrypt_generic() completes.
ok tb@
| -rw-r--r-- | src/lib/libcrypto/aes/aes.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/src/lib/libcrypto/aes/aes.c b/src/lib/libcrypto/aes/aes.c index 45b7a3b109..cbfb548b3b 100644 --- a/src/lib/libcrypto/aes/aes.c +++ b/src/lib/libcrypto/aes/aes.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: aes.c,v 1.11 2025/07/13 06:01:33 jsing Exp $ */ | 1 | /* $OpenBSD: aes.c,v 1.12 2025/07/20 08:55:49 jsing Exp $ */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 2002-2006 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 2002-2006 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| @@ -196,6 +196,9 @@ aes_ctr32_encrypt_generic(const unsigned char *in, unsigned char *out, | |||
| 196 | out += 16; | 196 | out += 16; |
| 197 | blocks--; | 197 | blocks--; |
| 198 | } | 198 | } |
| 199 | |||
| 200 | explicit_bzero(buf, sizeof(buf)); | ||
| 201 | explicit_bzero(iv, sizeof(iv)); | ||
| 199 | } | 202 | } |
| 200 | 203 | ||
| 201 | #ifdef HAVE_AES_CTR32_ENCRYPT_INTERNAL | 204 | #ifdef HAVE_AES_CTR32_ENCRYPT_INTERNAL |