Convert memset calls to OPENSSL_cleanse

{

    bn_check_top(a);

    if (a->d != NULL)

        memset(a->d, 0, sizeof(*a->d) * a->dmax);

        OPENSSL_cleanse(a->d, sizeof(*a->d) * a->dmax);

    a->top = 0;

    a->neg = 0;

}

        return;

    if (a->data != NULL) {

        memset(a->data, 0, (unsigned int)a->max);

        if (a->flags & BUF_MEM_FLAG_SECURE)

            OPENSSL_secure_free(a->data);

        else

#ifndef OPENSSL_NO_ENGINE

    ENGINE_finish(ctx->engine);

#endif

    memset(ctx, 0, sizeof(*ctx));

    OPENSSL_cleanse(ctx, sizeof(*ctx));

    return 1;

}

        ctx->digest->cleanup(ctx);

        EVP_MD_CTX_set_flags(ctx, EVP_MD_CTX_FLAG_CLEANED);

    }

    memset(ctx->md_data, 0, ctx->digest->ctx_size);

    OPENSSL_cleanse(ctx->md_data, ctx->digest->ctx_size);

    return ret;

}

 *                                      <appro@fy.chalmers.se>

 */

#include <openssl/crypto.h>

#if !defined(DATA_ORDER_IS_BIG_ENDIAN) && !defined(DATA_ORDER_IS_LITTLE_ENDIAN)

# error "DATA_ORDER must be defined!"

#endif

            data += n;

            len -= n;

            c->num = 0;

            /*

             * We use memset rather than OPENSSL_cleanse() here deliberately.

             * Using OPENSSL_cleanse() here could be a performance issue. It

             * will get properly cleansed on finalisation so this isn't a

             * security problem.

             */

            memset(p, 0, HASH_CBLOCK); /* keep it zeroed */

        } else {

            memcpy(p + n, data, len);

    p -= HASH_CBLOCK;

    HASH_BLOCK_DATA_ORDER(c, p, 1);

    c->num = 0;

    memset(p, 0, HASH_CBLOCK);

    OPENSSL_cleanse(p, HASH_CBLOCK);

#ifndef HASH_MAKE_STRING

# error "HASH_MAKE_STRING must be defined!"

    for (i = 0; i < 16; i++)

        md[i] = (UCHAR) (p1[i] & 0xff);

    memset(&c, 0, sizeof(c));

    OPENSSL_cleanse(c, sizeof(*c));

    return 1;

}