From 42e2da606c1a90b19a0aaca36b02785306fec2dc Mon Sep 17 00:00:00 2001 From: Thomas Egerer Date: Fri, 4 Nov 2011 09:24:58 +0100 Subject: Use chunk_clear to memwipe shared secret --- src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c') diff --git a/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c b/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c index 78ed2811a..9e4067589 100644 --- a/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c +++ b/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c @@ -219,7 +219,7 @@ METHOD(diffie_hellman_t, set_other_public_value, void, return; } - chunk_free(&this->shared_secret); + chunk_clear(&this->shared_secret); if (!compute_shared_key(this, &this->shared_secret)) { DBG1(DBG_LIB, "ECDH shared secret computation failed"); -- cgit v1.2.3