From aae96c9060d24a330babf66ef6fb4769254936a4 Mon Sep 17 00:00:00 2001
From: Valerio Setti <valerio.setti@nordicsemi.no>
Date: Wed, 26 Apr 2023 13:08:56 +0200
Subject: [PATCH] pk: fix: clear buffer holding raw EC private key on exit

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
---
 library/pk.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/library/pk.c b/library/pk.c
index d46a93461a..dcdfd1a5fc 100644
--- a/library/pk.c
+++ b/library/pk.c
@@ -672,6 +672,8 @@ int mbedtls_pk_wrap_as_opaque(mbedtls_pk_context *pk,
         return MBEDTLS_ERR_PK_HW_ACCEL_FAILED;
     }
 
+    mbedtls_platform_zeroize(d, sizeof(d));
+
     /* make PK context wrap the key slot */
     mbedtls_pk_free(pk);
     mbedtls_pk_init(pk);