Merge pull request #719 from gabor-mezei-arm/689_zeroising_of_plaintext_buffers

Zeroising of plaintext buffers in mbedtls_ssl_read()
2020-08-12 18:51:42 +02:00 · 2020-08-12 18:51:42 +02:00 · e900b59703
commit e900b59703
parent eaa0739143 3c57ccd777
2 changed files with 8 additions and 0 deletions
--- a/ChangeLog.d/zeroising_of_plaintext_buffer.txt
+++ b/ChangeLog.d/zeroising_of_plaintext_buffer.txt
@ -0,0 +1,4 @@
+Security
+   * Zeroising of plaintext buffers in mbedtls_ssl_read() to erase unused
+     application data from memory. Reported in #689 by
+     Johan Uppman Bruce of Sectra.
--- a/library/ssl_msg.c
+++ b/library/ssl_msg.c
@ -5631,6 +5631,10 @@ int mbedtls_ssl_read( mbedtls_ssl_context *ssl, unsigned char *buf, size_t len )
    memcpy( buf, ssl->in_offt, n );
    ssl->in_msglen -= n;

+    /* Zeroising the plaintext buffer to erase unused application data
+       from the memory. */
+    mbedtls_platform_zeroize( ssl->in_offt, n );
+
    if( ssl->in_msglen == 0 )
    {
        /* all bytes consumed */