From 314fc555846ac7bf2cc68a117c99a6af26f7043e Mon Sep 17 00:00:00 2001
From: Alfred G <28123637+alfred2g@users.noreply.github.com>
Date: Mon, 4 Mar 2024 16:49:59 -0800
Subject: [PATCH] Fix: Use buffer without memory allocation (#180)

---
 source/windows/bcrypt_aes.c | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/source/windows/bcrypt_aes.c b/source/windows/bcrypt_aes.c
index aeb646e6..0229de3a 100644
--- a/source/windows/bcrypt_aes.c
+++ b/source/windows/bcrypt_aes.c
@@ -277,9 +277,12 @@ static void s_clear_reusable_components(struct aws_symmetric_cipher *cipher) {
     }
 
     aws_byte_buf_secure_zero(&cipher_impl->overflow);
-    aws_byte_buf_secure_zero(&cipher_impl->working_mac_buffer);
-    /* windows handles this, just go ahead and tell the API it's got a length. */
-    cipher_impl->working_mac_buffer.len = AWS_AES_256_CIPHER_BLOCK_SIZE;
+
+    if (cipher_impl->working_mac_buffer.capacity != 0) {
+        aws_byte_buf_secure_zero(&cipher_impl->working_mac_buffer);
+        /* windows handles this, just go ahead and tell the API it's got a length. */
+        cipher_impl->working_mac_buffer.len = AWS_AES_256_CIPHER_BLOCK_SIZE;
+    }
 }
 
 static int s_reset_cbc_cipher(struct aws_symmetric_cipher *cipher) {