bn2binpad: Use memset as the buffer will be used later

Apparently using OPENSSL_cleanse() confuses the fuzzer so it makes the buffer to appear uninitialized. And memset can be safely used here and it is also potentially faster. Fixes #17237 Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de> (Merged from https://github.com/openssl/openssl/pull/17240)
author: Tomas Mraz <tomas@openssl.org> 2021-12-08 18:26:03 +0100
committer: Tomas Mraz <tomas@openssl.org> 2021-12-13 11:32:39 +0100
commit: 858d5ac16d256db24f78b8c84e723b7d34c8b1ea (patch)
tree: ffb583823b99613a39ff925bada8ade242c26f2e /crypto/bn/bn_lib.c
parent: 61fa00a4d03f6808389bc1847937f72d184f0627 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/crypto/bn/bn_lib.c b/crypto/bn/bn_lib.c
index 28a3e91679..d37b89c2a6 100644
--- a/crypto/bn/bn_lib.c
+++ b/crypto/bn/bn_lib.c
@@ -505,7 +505,8 @@ int bn2binpad(const BIGNUM *a, unsigned char *to, int tolen, endianess_t endiane
     /* Swipe through whole available data and don't give away padded zero. */
     atop = a->dmax * BN_BYTES;
     if (atop == 0) {
-        OPENSSL_cleanse(to, tolen);
+        if (tolen != 0)
+            memset(to, '\0', tolen);
         return tolen;
     }
author	Tomas Mraz <tomas@openssl.org>	2021-12-08 18:26:03 +0100
committer	Tomas Mraz <tomas@openssl.org>	2021-12-13 11:32:39 +0100
commit	858d5ac16d256db24f78b8c84e723b7d34c8b1ea (patch)
tree	ffb583823b99613a39ff925bada8ade242c26f2e /crypto/bn/bn_lib.c
parent	61fa00a4d03f6808389bc1847937f72d184f0627 (diff)