Commit 5d80fab0 authored Apr 30, 2015 by Matt Caswell

Replace memset with OPENSSL_clear_free()

BUF_MEM_free() attempts to cleanse memory using memset immediately prior
to a free. This is at risk of being optimised away by the compiler, so
replace with a call to OPENSSL_clear_free() instead.

With thanks to the Open Crypto Audit Project for reporting this issue.

Reviewed-by: Stephen Henson <steve@openssl.org>

parent e36c5fc4

crypto/buffer/buffer.c

+1 −2

Original line number	Diff line number	Diff line
		@@ -88,8 +88,7 @@ void BUF_MEM_free(BUF_MEM *a)
		return;

		if (a->data != NULL) {
		memset(a->data, 0, (unsigned int)a->max);
		OPENSSL_free(a->data);
		OPENSSL_clear_free(a->data, a->max);
		}
		OPENSSL_free(a);
		}