add bug number and explanation to changes/bug2385; call it a feature

author: Nick Mathewson <nickm@torproject.org> 2012-06-18 13:20:02 -0400
committer: Nick Mathewson <nickm@torproject.org> 2012-06-18 13:20:02 -0400
commit: dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1 (patch)
tree: eb4f917695d30328ffa9cae2c5b5a856e293dc2e
parent: 4a8eaad7efd4e24e89f969f79d9bde1874f366d1 (diff)
download: tor-dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1.tar.gz
tor-dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1.zip
1 files changed, 8 insertions, 4 deletions
diff --git a/changes/bug2385 b/changes/bug2385
index e7151f49eb..5d571d910f 100644
--- a/changes/bug2385
+++ b/changes/bug2385
@@ -1,5 +1,9 @@
- o Minor bugfixes:
-   - Clear keys and key-derived material left on the stack in rendservice.c
-     and rendclient.c
+ o Minor features (security):
+   - Clear keys and key-derived material left on the stack in
+     rendservice.c and rendclient.c. This should make us more
+     forward-secure against cold-boot attacks and the like. Fix for
+     bug 2385.
+
    - Check return value of crypto_pk_write_private_key_to_string() in
-     end_service_load_keys()
+     end_service_load_keys(). This should make us more forward-secure
+     against cold-boot attacks and the like. Fix for bug 2385.
author	Nick Mathewson <nickm@torproject.org>	2012-06-18 13:20:02 -0400
committer	Nick Mathewson <nickm@torproject.org>	2012-06-18 13:20:02 -0400
commit	dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1 (patch)
tree	eb4f917695d30328ffa9cae2c5b5a856e293dc2e
parent	4a8eaad7efd4e24e89f969f79d9bde1874f366d1 (diff)
download	tor-dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1.tar.gz tor-dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1.zip