Introduce polarssl_zeroize() instead of memset() for zeroization

commit: 312da33ef121dcbaad3dee049f7b34243aead792 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Fri Jun 13 17:20:13 2014 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Jul 08 18:28:52 2014 +0200
tree: 5b864d1aaca37ffff03d3e46ef10557b701ed8cf
parent: 1b08bd9525e9c880dd05873831b38844d0d8c8d6 [diff] [blame]
diff --git a/library/dhm.c b/library/dhm.c
index b6f9b9d..97d6c7a 100644
--- a/library/dhm.c
+++ b/library/dhm.c

@@ -34,6 +34,11 @@
 
 #include "polarssl/dhm.h"
 
+/* Implementation that should never be optimized out by the compiler */
+static void polarssl_zeroize( void *v, size_t n ) {
+    volatile unsigned char *p = v; while( n-- ) *p++ = 0;
+}
+
 /*
  * helper to validate the mpi size and import it
  */
@@ -286,6 +291,8 @@
     mpi_free( &ctx->RP ); mpi_free( &ctx->K ); mpi_free( &ctx->GY );
     mpi_free( &ctx->GX ); mpi_free( &ctx->X ); mpi_free( &ctx->G );
     mpi_free( &ctx->P );
+
+    polarssl_zeroize( ctx, sizeof( dhm_context ) );
 }
 
 #if defined(POLARSSL_SELF_TEST)
commit	312da33ef121dcbaad3dee049f7b34243aead792	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Fri Jun 13 17:20:13 2014 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Jul 08 18:28:52 2014 +0200
tree	5b864d1aaca37ffff03d3e46ef10557b701ed8cf
parent	1b08bd9525e9c880dd05873831b38844d0d8c8d6 [diff] [blame]