More on in-memory zeroisation
Thierry Moreau
thierry.moreau at connotech.com
Mon Dec 10 02:47:41 EST 2007
Peter Gutmann wrote:
> There was a discussion on this list a year or two back about problems in using
> memset() to zeroise in-memory data, specifically the fact that optimising
> compilers would remove a memset() on (apparently) dead data in the belief that
> it wasn't serving any purpose.
>
Then, s/memset(?,0,?)/(memset)(?,0,?)/ to get rid of compiler in-lining.
Ref: ANSI X3.159-1989, section 4.1.6 (Use of C standard library functions)
--
- Thierry Moreau
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list