From ce9188ee354fd9e994160b8f704214773567a8e6 Mon Sep 17 00:00:00 2001
From: James Prestwood <prestwoj@gmail.com>
Date: Wed, 22 Dec 2021 15:00:16 -0800
Subject: [PATCH] dpp: zero nonces/keys on dpp_reset

---
 src/dpp.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/src/dpp.c b/src/dpp.c
index 48343445..941c3f07 100644
--- a/src/dpp.c
+++ b/src/dpp.c
@@ -163,6 +163,12 @@ static void dpp_reset(struct dpp_sm *dpp)
 
 	dpp->state = DPP_STATE_NOTHING;
 
+	explicit_bzero(dpp->r_nonce, dpp->nonce_len);
+	explicit_bzero(dpp->i_nonce, dpp->nonce_len);
+	explicit_bzero(dpp->e_nonce, dpp->nonce_len);
+	explicit_bzero(dpp->ke, dpp->key_len);
+	explicit_bzero(dpp->k2, dpp->key_len);
+
 	dpp_free_auth_data(dpp);
 }