Introduce polarssl_zeroize() instead of memset() for zeroization

commit: 312da33ef121dcbaad3dee049f7b34243aead792 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Fri Jun 13 17:20:13 2014 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Jul 08 18:28:52 2014 +0200
tree: 5b864d1aaca37ffff03d3e46ef10557b701ed8cf
parent: 1b08bd9525e9c880dd05873831b38844d0d8c8d6 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 6486ba3..83613b9 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -12,6 +12,8 @@
    * Improvements to tests/Makefile, contributed by Oden Eriksson.
    * Use UTC time to check certificate validity.
    * Reject certificates with times not in UTC, per RFC 5280.
+   * Migrate zeroizing of data to polarssl_zeroize() instead of memset()
+     against unwanted compiler optimizations
 
 Security
    * Forbid change of server certificate during renegotiation to prevent
commit	312da33ef121dcbaad3dee049f7b34243aead792	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Fri Jun 13 17:20:13 2014 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Jul 08 18:28:52 2014 +0200
tree	5b864d1aaca37ffff03d3e46ef10557b701ed8cf
parent	1b08bd9525e9c880dd05873831b38844d0d8c8d6 [diff] [blame]