From: Nick Mathewson <nickm@torproject.org>
Date: Mon, 18 Jun 2012 17:20:02 +0000 (-0400)
Subject: add bug number and explanation to changes/bug2385; call it a feature
X-Git-Tag: tor-0.2.4.1-alpha~118^2
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1;p=thirdparty%2Ftor.git

add bug number and explanation to changes/bug2385; call it a feature
---

diff --git a/changes/bug2385 b/changes/bug2385
index e7151f49eb..5d571d910f 100644
--- a/changes/bug2385
+++ b/changes/bug2385
@@ -1,5 +1,9 @@
- o Minor bugfixes:
-   - Clear keys and key-derived material left on the stack in rendservice.c
-     and rendclient.c
+ o Minor features (security):
+   - Clear keys and key-derived material left on the stack in
+     rendservice.c and rendclient.c. This should make us more
+     forward-secure against cold-boot attacks and the like. Fix for
+     bug 2385.
+
    - Check return value of crypto_pk_write_private_key_to_string() in
-     end_service_load_keys()
+     end_service_load_keys(). This should make us more forward-secure
+     against cold-boot attacks and the like. Fix for bug 2385.