From 2d814990267b4f9b1bb509d81c9f699ea3bace71 Mon Sep 17 00:00:00 2001
From: Valerio Setti <valerio.setti@nordicsemi.no>
Date: Thu, 27 Apr 2023 10:05:03 +0200
Subject: [PATCH] pk: fix position for mbedtls_platform_zeroize

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
---
 library/pk.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/library/pk.c b/library/pk.c
index 04c5e405e9..4e2f218032 100644
--- a/library/pk.c
+++ b/library/pk.c
@@ -904,12 +904,11 @@ int mbedtls_pk_wrap_as_opaque(mbedtls_pk_context *pk,
 
         /* import private key into PSA */
         status = psa_import_key(&attributes, d, d_len, key);
+        mbedtls_platform_zeroize(d, sizeof(d));
         if (status != PSA_SUCCESS) {
             return PSA_PK_TO_MBEDTLS_ERR(status);
         }
 
-        mbedtls_platform_zeroize(d, sizeof(d));
-
         /* make PK context wrap the key slot */
         mbedtls_pk_free(pk);
         mbedtls_pk_init(pk);