Merge pull request #10100 from Frauschi/zd21464

douzzer · web-flow · commit c8415c407f97 · 2026-03-30T22:34:53.000-05:00
Zeroize sensitive buffers for ML-DSA
diff --git a/wolfcrypt/src/dilithium.c b/wolfcrypt/src/dilithium.c
@@ -8414,6 +8414,7 @@ static int dilithium_sign_with_seed_mu(dilithium_key* key,
         dilithium_vec_encode_gamma1(z, params->l, params->gamma1_bits, ze);
     }
 
+    ForceZero(priv_rand_seed, sizeof(priv_rand_seed));
     XFREE(y, key->heap, DYNAMIC_TYPE_DILITHIUM);
     return ret;
 #else
@@ -8955,6 +8956,7 @@ static int dilithium_sign_with_seed_mu(dilithium_key* key,
         while ((ret == 0) && (!valid));
     }
 
+    ForceZero(priv_rand_seed, sizeof(priv_rand_seed));
     XFREE(y, key->heap, DYNAMIC_TYPE_DILITHIUM);
     return ret;
 #endif
@@ -9008,6 +9010,7 @@ static int dilithium_sign_ctx_msg_with_seed(dilithium_key* key,
         ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);
     }
 
+    ForceZero(seedMu, sizeof(seedMu));
     return ret;
 }
 
@@ -9057,6 +9060,7 @@ static int dilithium_sign_msg_with_seed(dilithium_key* key, const byte* seed,
         ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);
     }
 
+    ForceZero(seedMu, sizeof(seedMu));
     return ret;
 }
 #endif /* WOLFSSL_DILITHIUM_NO_CTX */
@@ -9122,6 +9126,7 @@ static int dilithium_sign_ctx_msg(dilithium_key* key, WC_RNG* rng,
         ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);
     }
 
+    ForceZero(seedMu, sizeof(seedMu));
     return ret;
 }
 
@@ -9184,6 +9189,7 @@ static int dilithium_sign_msg(dilithium_key* key, WC_RNG* rng,
         ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);
     }
 
+    ForceZero(seedMu, sizeof(seedMu));
     return ret;
 }
 #endif /* WOLFSSL_DILITHIUM_NO_CTX */
@@ -9257,6 +9263,7 @@ static int dilithium_sign_ctx_hash_with_seed(dilithium_key* key,
         ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);
     }
 
+    ForceZero(seedMu, sizeof(seedMu));
     return ret;
 }
 

Original file line number	Diff line number	Diff line change
`@@ -8414,6 +8414,7 @@ static int dilithium_sign_with_seed_mu(dilithium_key* key,`
`8414`	`8414`	`dilithium_vec_encode_gamma1(z, params->l, params->gamma1_bits, ze);`
`8415`	`8415`	`}`
`8416`	`8416`
	`8417`	`+ ForceZero(priv_rand_seed, sizeof(priv_rand_seed));`
`8417`	`8418`	`XFREE(y, key->heap, DYNAMIC_TYPE_DILITHIUM);`
`8418`	`8419`	`return ret;`
`8419`	`8420`	`#else`
`@@ -8955,6 +8956,7 @@ static int dilithium_sign_with_seed_mu(dilithium_key* key,`
`8955`	`8956`	`while ((ret == 0) && (!valid));`
`8956`	`8957`	`}`
`8957`	`8958`
	`8959`	`+ ForceZero(priv_rand_seed, sizeof(priv_rand_seed));`
`8958`	`8960`	`XFREE(y, key->heap, DYNAMIC_TYPE_DILITHIUM);`
`8959`	`8961`	`return ret;`
`8960`	`8962`	`#endif`
`@@ -9008,6 +9010,7 @@ static int dilithium_sign_ctx_msg_with_seed(dilithium_key* key,`
`9008`	`9010`	`ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);`
`9009`	`9011`	`}`
`9010`	`9012`
	`9013`	`+ ForceZero(seedMu, sizeof(seedMu));`
`9011`	`9014`	`return ret;`
`9012`	`9015`	`}`
`9013`	`9016`
`@@ -9057,6 +9060,7 @@ static int dilithium_sign_msg_with_seed(dilithium_key* key, const byte* seed,`
`9057`	`9060`	`ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);`
`9058`	`9061`	`}`
`9059`	`9062`
	`9063`	`+ ForceZero(seedMu, sizeof(seedMu));`
`9060`	`9064`	`return ret;`
`9061`	`9065`	`}`
`9062`	`9066`	`#endif /* WOLFSSL_DILITHIUM_NO_CTX */`
`@@ -9122,6 +9126,7 @@ static int dilithium_sign_ctx_msg(dilithium_key* key, WC_RNG* rng,`
`9122`	`9126`	`ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);`
`9123`	`9127`	`}`
`9124`	`9128`
	`9129`	`+ ForceZero(seedMu, sizeof(seedMu));`
`9125`	`9130`	`return ret;`
`9126`	`9131`	`}`
`9127`	`9132`
`@@ -9184,6 +9189,7 @@ static int dilithium_sign_msg(dilithium_key* key, WC_RNG* rng,`
`9184`	`9189`	`ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);`
`9185`	`9190`	`}`
`9186`	`9191`
	`9192`	`+ ForceZero(seedMu, sizeof(seedMu));`
`9187`	`9193`	`return ret;`
`9188`	`9194`	`}`
`9189`	`9195`	`#endif /* WOLFSSL_DILITHIUM_NO_CTX */`
`@@ -9257,6 +9263,7 @@ static int dilithium_sign_ctx_hash_with_seed(dilithium_key* key,`
`9257`	`9263`	`ret = dilithium_sign_with_seed_mu(key, seedMu, sig, sigLen);`
`9258`	`9264`	`}`
`9259`	`9265`
	`9266`	`+ ForceZero(seedMu, sizeof(seedMu));`
`9260`	`9267`	`return ret;`
`9261`	`9268`	`}`
`9262`	`9269`