mpi: use zeroize_key() instead of memset()

author Nikos Mavrogiannopoulos <nmav@redhat.com>

Mon, 7 Jul 2014 10:13:31 +0000 (12:13 +0200)

committer Nikos Mavrogiannopoulos <nmav@redhat.com>

Mon, 7 Jul 2014 10:13:31 +0000 (12:13 +0200)
author Nikos Mavrogiannopoulos <nmav@redhat.com>
Mon, 7 Jul 2014 10:13:31 +0000 (12:13 +0200)
committer Nikos Mavrogiannopoulos <nmav@redhat.com>
Mon, 7 Jul 2014 10:13:31 +0000 (12:13 +0200)
diff --git a/lib/nettle/mpi.c b/lib/nettle/mpi.c

index 7940b3caa19b00365e9a730a3f01606a1521af35..1324263e7c71240d5d2afa310572de13e4f7cafe 100644 (file)
--- a/lib/nettle/mpi.c
+++ b/lib/nettle/mpi.c
@@ -227,7 +227,7 @@ static void wrap_nettle_mpi_release(bigint_t a)
  
  static void wrap_nettle_mpi_clear(bigint_t a)
  {
-       memset(TOMPZ(a)[0]._mp_d, 0,
+       zeroize_key(TOMPZ(a)[0]._mp_d,
                TOMPZ(a)[0]._mp_alloc * sizeof(mp_limb_t));
  }
  
diff --git a/lib/nettle/pk.c b/lib/nettle/pk.c

index 4422ff02ab479d381af1f1ec44ef2a3157c406cd..0bb6a2dbb929f4ea0c306e48bd49fbe7cad5443a 100644 (file)
--- a/lib/nettle/pk.c
+++ b/lib/nettle/pk.c
@@ -67,14 +67,14 @@ static void rnd_func(void *_ctx, unsigned length, uint8_t * data)
  static void
  ecc_scalar_zclear (struct ecc_scalar *s)
  {
-        memset(s->p, 0, ecc_size(s->ecc)*sizeof(mp_limb_t));
+        zeroize_key(s->p, ecc_size(s->ecc)*sizeof(mp_limb_t));
          ecc_scalar_clear(s);
  }
  
  static void 
  ecc_point_zclear (struct ecc_point *p)
  {
-        memset(p->p, 0, ecc_size_a(p->ecc)*sizeof(mp_limb_t));
+        zeroize_key(p->p, ecc_size_a(p->ecc)*sizeof(mp_limb_t));
          ecc_point_clear(p);
  }
author	Nikos Mavrogiannopoulos <nmav@redhat.com>
	Mon, 7 Jul 2014 10:13:31 +0000 (12:13 +0200)
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>
	Mon, 7 Jul 2014 10:13:31 +0000 (12:13 +0200)
lib/nettle/mpi.c		patch \| blob \| blame \| history
lib/nettle/pk.c		patch \| blob \| blame \| history