Fix Fenrir F-1761: wolfTPM2_RsaDecrypt output cleanup on all return paths

dgarske · dgarske · commit 44fcd9f63b7a · 2026-04-06T15:58:05.000-07:00
diff --git a/src/tpm2_wrap.c b/src/tpm2_wrap.c
@@ -4800,10 +4800,12 @@ int wolfTPM2_RsaDecrypt(WOLFTPM2_DEV* dev, WOLFTPM2_KEY* key,
         printf("TPM2_RSA_Decrypt failed %d: %s\n", rc,
             wolfTPM2_GetRCString(rc));
     #endif
+        TPM2_ForceZero(&rsaDecOut, sizeof(rsaDecOut));
         return rc;
     }
 
     if (*msgSz < rsaDecOut.message.size) {
+        TPM2_ForceZero(&rsaDecOut, sizeof(rsaDecOut));
         return BUFFER_E;
     }
     *msgSz = rsaDecOut.message.size;
@@ -4813,6 +4815,7 @@ int wolfTPM2_RsaDecrypt(WOLFTPM2_DEV* dev, WOLFTPM2_KEY* key,
     printf("TPM2_RSA_Decrypt: %d\n", rsaDecOut.message.size);
 #endif
 
+    TPM2_ForceZero(&rsaDecOut, sizeof(rsaDecOut));
     return rc;
 }
 

Original file line number	Diff line number	Diff line change
`@@ -4800,10 +4800,12 @@ int wolfTPM2_RsaDecrypt(WOLFTPM2_DEV* dev, WOLFTPM2_KEY* key,`
`4800`	`4800`	`printf("TPM2_RSA_Decrypt failed %d: %s\n", rc,`
`4801`	`4801`	`wolfTPM2_GetRCString(rc));`
`4802`	`4802`	`#endif`
	`4803`	`+ TPM2_ForceZero(&rsaDecOut, sizeof(rsaDecOut));`
`4803`	`4804`	`return rc;`
`4804`	`4805`	`}`
`4805`	`4806`
`4806`	`4807`	`if (*msgSz < rsaDecOut.message.size) {`
	`4808`	`+ TPM2_ForceZero(&rsaDecOut, sizeof(rsaDecOut));`
`4807`	`4809`	`return BUFFER_E;`
`4808`	`4810`	`}`
`4809`	`4811`	`*msgSz = rsaDecOut.message.size;`
`@@ -4813,6 +4815,7 @@ int wolfTPM2_RsaDecrypt(WOLFTPM2_DEV* dev, WOLFTPM2_KEY* key,`
`4813`	`4815`	`printf("TPM2_RSA_Decrypt: %d\n", rsaDecOut.message.size);`
`4814`	`4816`	`#endif`
`4815`	`4817`
	`4818`	`+ TPM2_ForceZero(&rsaDecOut, sizeof(rsaDecOut));`
`4816`	`4819`	`return rc;`
`4817`	`4820`	`}`
`4818`	`4821`