Skip to content

0 memset kop in devcrypto_x25519 before use#10817

Open
holtrop-wolfssl wants to merge 1 commit into
wolfSSL:masterfrom
holtrop-wolfssl:zero-kop-devcrypto-curve25519
Open

0 memset kop in devcrypto_x25519 before use#10817
holtrop-wolfssl wants to merge 1 commit into
wolfSSL:masterfrom
holtrop-wolfssl:zero-kop-devcrypto-curve25519

Conversation

@holtrop-wolfssl

Copy link
Copy Markdown
Contributor

Description

0 memset kop in devcrypto_x25519 before use

This is the same change as in 5169875 but for devcrypto_x25519.c instead of devcrypto_ecdsa.c

Fixes F-4444

Testing

How did you test?

Checklist

  • added tests
  • updated/added doxygen
  • updated appropriate READMEs
  • Updated manual and documentation

@holtrop-wolfssl holtrop-wolfssl self-assigned this Jun 30, 2026
Copilot AI review requested due to automatic review settings June 30, 2026 14:30

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR addresses uninitialized-struct usage in the /dev/crypto-backed Curve25519 (X25519) implementation by zero-initializing the struct crypt_kop kop before populating its fields, matching the existing fix previously applied to the ECDSA devcrypto path.

Changes:

  • Zero-initialize crypt_kop (kop) in wc_DevCryptoCurve25519() prior to setting operation/session/params.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants