dearsky/pico-openpgp
1
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases 15 Wiki Activity

Clear dek on error.

Browse Source 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
This commit is contained in:
Pol Henarejos
2026-01-22 12:14:12 +01:00
parent 2ce4f22622
commit 551334a447
1 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
src/openpgp/openpgp.c
View File

@@ -219,6 +219,10 @@ void scan_files_openpgp() {
low_flash_available(); low_flash_available();
} }
void release_dek() {
memset(dek, 0, sizeof(dek));
}
extern bool has_pwpiv; extern bool has_pwpiv;
extern uint8_t session_pwpiv[32]; extern uint8_t session_pwpiv[32];
int load_dek() { int load_dek() {
@@ -245,6 +249,7 @@ int load_dek() {
r = aes_decrypt_cfb_256(session_pwpiv, dek, dek + IV_SIZE, 32); r = aes_decrypt_cfb_256(session_pwpiv, dek, dek + IV_SIZE, 32);
} }
if (r != 0) { if (r != 0) {
release_dek();
return PICOKEY_EXEC_ERROR; return PICOKEY_EXEC_ERROR;
} }
if (otp_key_1) { if (otp_key_1) {
@@ -255,10 +260,6 @@ int load_dek() {
return PICOKEY_OK; return PICOKEY_OK;
} }
void release_dek() {
memset(dek, 0, sizeof(dek));
}
int dek_encrypt(uint8_t *data, size_t len) { int dek_encrypt(uint8_t *data, size_t len) {
int r; int r;
if ((r = load_dek()) != PICOKEY_OK) { if ((r = load_dek()) != PICOKEY_OK) {