don't use memset() in privacy/security relevant code parts

As memset() can be optimized out by a compiler it should not be used in privacy/security relevant code parts. OpenSSL provides the safe OPENSSL_cleanse() function in crypto.h, which perfectly does the job of clean and overwrite data. For details see: http://www.viva64.com/en/b/0178/ - change memset() to OPENSSL_cleanse() where appropriate - change a hard-coded number from netbase.cpp into a sizeof()
author: Philip Kaufmann <phil.kaufmann@t-online.de> 2012-11-08 19:38:49 +0100
committer: Philip Kaufmann <phil.kaufmann@t-online.de> 2012-11-09 12:53:53 +0100
commit: 0f8a6477825fbaad0d37233bdd3011d748f607ab (patch)
tree: e4ef0256d9b5bccac47b3e9c901960d403bbdcbe /src/netbase.cpp
parent: 16d9d61f99c2e081585e6634d25da3523804eabf (diff)
download: bitcoin-0f8a6477825fbaad0d37233bdd3011d748f607ab.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/src/netbase.cpp b/src/netbase.cpp
index 7b28e7f1bc..9e7307204a 100644
--- a/src/netbase.cpp
+++ b/src/netbase.cpp
@@ -545,7 +545,7 @@ bool ConnectSocketByName(CService &addr, SOCKET& hSocketRet, const char *pszDest
 
 void CNetAddr::Init()
 {
-    memset(ip, 0, 16);
+    memset(ip, 0, sizeof(ip));
 }
 
 void CNetAddr::SetIP(const CNetAddr& ipIn)
author	Philip Kaufmann <phil.kaufmann@t-online.de>	2012-11-08 19:38:49 +0100
committer	Philip Kaufmann <phil.kaufmann@t-online.de>	2012-11-09 12:53:53 +0100
commit	0f8a6477825fbaad0d37233bdd3011d748f607ab (patch)
tree	e4ef0256d9b5bccac47b3e9c901960d403bbdcbe /src/netbase.cpp
parent	16d9d61f99c2e081585e6634d25da3523804eabf (diff)
download	bitcoin-0f8a6477825fbaad0d37233bdd3011d748f607ab.tar.xz