Introduce polarssl_zeroize() instead of memset() for zeroization

2014-06-13 17:20:13 +02:00 · 2014-06-13 17:20:13 +02:00 · 3461772559
commit 3461772559
parent bbcb1ce703
36 changed files with 325 additions and 129 deletions
--- a/library/memory_buffer_alloc.c
+++ b/library/memory_buffer_alloc.c
@ -52,6 +52,11 @@
 #define polarssl_fprintf fprintf
 #endif

+/* Implementation that should never be optimized out by the compiler */
+static void polarssl_zeroize( void *v, size_t n ) {
+    volatile unsigned char *p = v; while( n-- ) *p++ = 0;
+}
+
 #define MAGIC1       0xFF00AA55
 #define MAGIC2       0xEE119966
 #define MAX_BT 20
@ -578,7 +583,7 @@ void memory_buffer_alloc_free()
 #if defined(POLARSSL_THREADING_C)
    polarssl_mutex_free( &heap.mutex );
 #endif
-    memset( &heap, 0, sizeof(buffer_alloc_ctx) );
+    polarssl_zeroize( &heap, sizeof(buffer_alloc_ctx) );
 }

 #endif /* POLARSSL_MEMORY_BUFFER_ALLOC_C */