projects / openssl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 4b8736a)
Make sure the rand_byte buffer in padlock engine is cleansed.
authorRichard Levitte <levitte@openssl.org>
Mon, 4 Apr 2016 14:55:12 +0000 (16:55 +0200)
committerRichard Levitte <levitte@openssl.org>
Mon, 4 Apr 2016 15:01:37 +0000 (17:01 +0200)
Submitted by Michael McConville <mmcco@mykolab.com>

Reviewed-by: Rich Salz <rsalz@openssl.org>
engines/e_padlock.c patch | blob | history

diff --git a/engines/e_padlock.c b/engines/e_padlock.c
index 96e7483729f742e9cb1bd5c94a9d42096c97911d..f474f50ca715b085a433dbfc10696e972ce05363 100644 (file)
--- a/engines/e_padlock.c
+++ b/engines/e_padlock.c
@@ -776,7 +776,7 @@ static int padlock_rand_bytes(unsigned char *output, int count)
         *output++ = (unsigned char)buf;
         count--;
     }
-    *(volatile unsigned int *)&buf = 0;
+    OPENSSL_cleanse(&buf, sizeof(buf));
 
     return 1;
 }
Unnamed repository; edit this file 'description' to name the repository.