[openssl-commits] [openssl] master update

Rich Salz rsalz at openssl.org
Thu Feb 25 15:04:19 UTC 2016


The branch master has been updated
       via  104ce8a9f02d250dd43c255eb7b8747e81b29422 (commit)
      from  380f18ed5f140e0ae1b68f3ab8f4f7c395658d9e (commit)


- Log -----------------------------------------------------------------
commit 104ce8a9f02d250dd43c255eb7b8747e81b29422
Author: Rich Salz <rsalz at akamai.com>
Date:   Thu Feb 25 08:29:52 2016 -0500

    RT4116: Change cleanse to just memset
    
    See also the discussion in https://github.com/openssl/openssl/pull/455
    
    Reviewed-by: Andy Polyakov <appro at openssl.org>

-----------------------------------------------------------------------

Summary of changes:
 crypto/mem_clr.c | 25 +++++++++----------------
 1 file changed, 9 insertions(+), 16 deletions(-)

diff --git a/crypto/mem_clr.c b/crypto/mem_clr.c
index e6450a1..3389919 100644
--- a/crypto/mem_clr.c
+++ b/crypto/mem_clr.c
@@ -59,23 +59,16 @@
 #include <string.h>
 #include <openssl/crypto.h>
 
-extern unsigned char cleanse_ctr;
-unsigned char cleanse_ctr = 0;
+/*
+ * Pointer to memset is volatile so that compiler must de-reference
+ * the pointer and can't assume that it points to any function in
+ * particular (such as memset, which it then might further "optimize")
+ */
+typedef void *(*memset_t)(void *,int,size_t);
+
+static volatile memset_t memset_func = memset;
 
 void OPENSSL_cleanse(void *ptr, size_t len)
 {
-    unsigned char *p = ptr;
-    size_t loop = len, ctr = cleanse_ctr;
-
-    if (ptr == NULL)
-        return;
-
-    while (loop--) {
-        *(p++) = (unsigned char)ctr;
-        ctr += (17 + ((size_t)p & 0xF));
-    }
-    p = memchr(ptr, (unsigned char)ctr, len);
-    if (p)
-        ctr += (63 + (size_t)p);
-    cleanse_ctr = (unsigned char)ctr;
+    memset_func(ptr, 0, len);
 }


More information about the openssl-commits mailing list