use explicit_bzero

author tedu <tedu@openbsd.org>

Tue, 6 May 2014 15:38:49 +0000 (15:38 +0000)

committer tedu <tedu@openbsd.org>

Tue, 6 May 2014 15:38:49 +0000 (15:38 +0000)
author tedu <tedu@openbsd.org>
Tue, 6 May 2014 15:38:49 +0000 (15:38 +0000)
committer tedu <tedu@openbsd.org>
Tue, 6 May 2014 15:38:49 +0000 (15:38 +0000)
diff --git a/lib/libc/crypt/bcrypt.c b/lib/libc/crypt/bcrypt.c

index 4656ca6..3bb61a5 100644 (file)
--- a/lib/libc/crypt/bcrypt.c
+++ b/lib/libc/crypt/bcrypt.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: bcrypt.c,v 1.41 2014/05/03 17:12:53 tedu Exp $        */
+/*     $OpenBSD: bcrypt.c,v 1.42 2014/05/06 15:38:49 tedu Exp $        */
  
  /*
   * Copyright (c) 2014 Ted Unangst <tedu@openbsd.org>
@@ -187,10 +187,10 @@ bcrypt_hashpass(const char *key, const char *salt, char *encrypted,
         encode_base64(encrypted + i + 3, csalt, BCRYPT_MAXSALT);
         encode_base64(encrypted + strlen(encrypted), ciphertext,
             4 * BCRYPT_BLOCKS - 1);
-       memset(&state, 0, sizeof(state));
-       memset(ciphertext, 0, sizeof(ciphertext));
-       memset(csalt, 0, sizeof(csalt));
-       memset(cdata, 0, sizeof(cdata));
+       explicit_bzero(&state, 0, sizeof(state));
+       explicit_bzero(ciphertext, 0, sizeof(ciphertext));
+       explicit_bzero(csalt, 0, sizeof(csalt));
+       explicit_bzero(cdata, 0, sizeof(cdata));
         return 0;
  }
author	tedu <tedu@openbsd.org>
	Tue, 6 May 2014 15:38:49 +0000 (15:38 +0000)
committer	tedu <tedu@openbsd.org>
	Tue, 6 May 2014 15:38:49 +0000 (15:38 +0000)