Skip to content

Zeroize request messages in wh_client_auth.c#432

Merged
JacobBarthelmeh merged 2 commits into
wolfSSL:mainfrom
padelsbach:zeroize-client-auth
Jul 2, 2026
Merged

Zeroize request messages in wh_client_auth.c#432
JacobBarthelmeh merged 2 commits into
wolfSSL:mainfrom
padelsbach:zeroize-client-auth

Conversation

@padelsbach

@padelsbach padelsbach commented Jun 29, 2026

Copy link
Copy Markdown
Contributor

Local buffer[] was being zeroed, but the actual message (where buffer[] was copied to) was not zeroed. Fix is to remove buffer and build the message directly in the message buf.

Fixes F-6469

@wolfSSL-Fenrir-bot wolfSSL-Fenrir-bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fenrir Automated Review — PR #432

Scan targets checked: wolfhsm-core-bugs, wolfhsm-src

Findings: 1
1 finding(s) posted as inline comments (see file-level comments below)

This review was generated automatically by Fenrir. Findings are non-blocking.

Comment thread src/wh_client_auth.c
@padelsbach padelsbach force-pushed the zeroize-client-auth branch from 704cdb6 to 766d2ba Compare July 1, 2026 14:24
Comment thread src/wh_client_auth.c

@JacobBarthelmeh JacobBarthelmeh left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!

@JacobBarthelmeh JacobBarthelmeh merged commit 75e0e52 into wolfSSL:main Jul 2, 2026
108 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

5 participants