Fix incorrect size used for zeroization of buffer

Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-08-11 16:41:04 +01:00 · 2023-08-11 16:41:04 +01:00 · ecb95bea1d
commit ecb95bea1d
parent 5e678fd4d2
1 changed files with 1 additions and 1 deletions
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@ -7722,7 +7722,7 @@ static int ssl_calc_finished_tls_generic(mbedtls_ssl_context *ssl, void *ctx,

    MBEDTLS_SSL_DEBUG_BUF(3, "calc finished result", buf, len);

-    mbedtls_platform_zeroize(padbuf, sizeof(padbuf));
+    mbedtls_platform_zeroize(padbuf, hlen);

    MBEDTLS_SSL_DEBUG_MSG(2, ("<= calc finished"));