From 0a9d51a49042a68daa15b0c74a2b7f152f52606b Mon Sep 17 00:00:00 2001
From: René Mayrhofer <rene@mayrhofer.eu.org>
Date: Thu, 19 May 2011 13:37:29 +0200
Subject: Imported Upstream version 4.5.2

---
 src/libstrongswan/plugins/padlock/padlock_aes_crypter.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'src/libstrongswan/plugins/padlock/padlock_aes_crypter.c')

diff --git a/src/libstrongswan/plugins/padlock/padlock_aes_crypter.c b/src/libstrongswan/plugins/padlock/padlock_aes_crypter.c
index 06c20292f..119de86aa 100644
--- a/src/libstrongswan/plugins/padlock/padlock_aes_crypter.c
+++ b/src/libstrongswan/plugins/padlock/padlock_aes_crypter.c
@@ -105,6 +105,8 @@ static void crypt(private_padlock_aes_crypter_t *this, char *iv,
 	*dst = chunk_alloc(src.len);
 	padlock_crypt(key_aligned, &cword, src.ptr, dst->ptr,
 				  src.len / AES_BLOCK_SIZE, iv_aligned);
+
+	memwipe(key_aligned, sizeof(key_aligned));
 }
 
 METHOD(crypter_t, decrypt, void,
@@ -146,7 +148,7 @@ METHOD(crypter_t, set_key, void,
 METHOD(crypter_t, destroy, void,
 	private_padlock_aes_crypter_t *this)
 {
-	free(this->key.ptr);
+	chunk_clear(&this->key);
 	free(this);
 }
 
-- 
cgit v1.2.3