Add and use and unlikely-to-be-eliminated memwipe()

Apparently some compilers like to eliminate memset() operations on data that's about to go out-of-scope. I've gone with the safest possible replacement, which might be a bit slow. I don't think this is critical path in any way that will affect performance, but if it is, we can work on that in 0.2.4. Fixes bug 7352.
author: Nick Mathewson <nickm@torproject.org> 2012-11-07 16:09:58 -0500
committer: Nick Mathewson <nickm@torproject.org> 2012-11-08 16:44:50 -0500
commit: 49dd5ef3a3d1775fdc3c0a7d069d3097b3baeeec (patch)
tree: 7189ed200ae8f47bf7d3399d0b99243dc93bced3 /src/common/crypto.h
parent: 758428dd32128874cefacc92ef63c1b5bc9a656e (diff)
download: tor-49dd5ef3a3d1775fdc3c0a7d069d3097b3baeeec.tar.gz
tor-49dd5ef3a3d1775fdc3c0a7d069d3097b3baeeec.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/src/common/crypto.h b/src/common/crypto.h
index 76bcbf7d43..7d56271785 100644
--- a/src/common/crypto.h
+++ b/src/common/crypto.h
@@ -271,6 +271,9 @@ int digest256_from_base64(char *digest, const char *d64);
 void secret_to_key(char *key_out, size_t key_out_len, const char *secret,
                    size_t secret_len, const char *s2k_specifier);
 
+/** OpenSSL-based utility functions. */
+void memwipe(void *mem, uint8_t byte, size_t sz);
+
 #ifdef CRYPTO_PRIVATE
 /* Prototypes for private functions only used by tortls.c, crypto.c, and the
  * unit tests. */
author	Nick Mathewson <nickm@torproject.org>	2012-11-07 16:09:58 -0500
committer	Nick Mathewson <nickm@torproject.org>	2012-11-08 16:44:50 -0500
commit	49dd5ef3a3d1775fdc3c0a7d069d3097b3baeeec (patch)
tree	7189ed200ae8f47bf7d3399d0b99243dc93bced3 /src/common/crypto.h
parent	758428dd32128874cefacc92ef63c1b5bc9a656e (diff)
download	tor-49dd5ef3a3d1775fdc3c0a7d069d3097b3baeeec.tar.gz tor-49dd5ef3a3d1775fdc3c0a7d069d3097b3baeeec.zip