From 991d4f1355d8825493e008ab4579ae4bf3bf0641 Mon Sep 17 00:00:00 2001
From: Mat M <mathew1800@gmail.com>
Date: Mon, 26 Feb 2018 00:12:49 -0500
Subject: [PATCH] se: Remove memset in se_perform_aes_block_operation (#53)

We can just initialize the array to be zeroed out. This is safer and less error-prone,
since the initializer is now associated with the variable directly, making it
impossible to put code relying on the zeroed out state before it (unlike with memset).
---
 exosphere/src/se.c | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/exosphere/src/se.c b/exosphere/src/se.c
index d9caebf23..78c85ff4d 100644
--- a/exosphere/src/se.c
+++ b/exosphere/src/se.c
@@ -381,17 +381,16 @@ void trigger_se_blocking_op(unsigned int op, void *dst, size_t dst_size, const v
 
 /* Secure AES Functionality. */
 void se_perform_aes_block_operation(void *dst, size_t dst_size, const void *src, size_t src_size) {
-    uint8_t block[0x10];
+    uint8_t block[0x10] = {0};
 
     if (src_size > sizeof(block) || dst_size > sizeof(block)) {
         generic_panic();
     }
-    
+
     /* Load src data into block. */
-    memset(block, 0, sizeof(block));
     memcpy(block, src, src_size);
     flush_dcache_range(block, block + sizeof(block));
-    
+
     /* Trigger AES operation. */
     SECURITY_ENGINE->BLOCK_COUNT_REG = 0;
     trigger_se_blocking_op(1, block, sizeof(block), block, sizeof(block));