1 files changed, 4 insertions, 4 deletions
diff --git a/monitor.c b/monitor.c
index 79bd7c0c4..531c4f9a8 100644
--- a/monitor.c
+++ b/monitor.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: monitor.c,v 1.130 2014/01/31 16:39:19 tedu Exp $ */
+/* $OpenBSD: monitor.c,v 1.131 2014/02/02 03:44:31 djm Exp $ */
 /*
 * Copyright 2002 Niels Provos <provos@citi.umich.edu>
 * Copyright 2002 Markus Friedl <markus@openbsd.org>
@@ -858,7 +858,7 @@ mm_answer_authpassword(int sock, Buffer *m)
        /* Only authenticate if the context is valid */
        authenticated = options.password_authentication &&
            auth_password(authctxt, passwd);
-        memset(passwd, 0, strlen(passwd));
+        explicit_bzero(passwd, strlen(passwd));
        free(passwd);
        buffer_clear(m);
@@ -1800,13 +1800,13 @@ monitor_apply_keystate(struct monitor *pmonitor)
        /* XXX inefficient for large buffers, need: buffer_init_from_string */
        buffer_clear(packet_get_input());
        buffer_append(packet_get_input(), child_state.input, child_state.ilen);
-        memset(child_state.input, 0, child_state.ilen);
+        explicit_bzero(child_state.input, child_state.ilen);
        free(child_state.input);
        buffer_clear(packet_get_output());
        buffer_append(packet_get_output(), child_state.output,
                      child_state.olen);
-        memset(child_state.output, 0, child_state.olen);
+        explicit_bzero(child_state.output, child_state.olen);
        free(child_state.output);
        /* Roaming */

diff --git a/monitor.c b/monitor.c index 79bd7c0c4..531c4f9a8 100644 --- a/monitor.c +++ b/monitor.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: monitor.c,v 1.130 2014/01/31 16:39:19 tedu Exp $ */	1	/* $OpenBSD: monitor.c,v 1.131 2014/02/02 03:44:31 djm Exp $ */
2	/*	2	/*
3	* Copyright 2002 Niels Provos <provos@citi.umich.edu>	3	* Copyright 2002 Niels Provos <provos@citi.umich.edu>
4	* Copyright 2002 Markus Friedl <markus@openbsd.org>	4	* Copyright 2002 Markus Friedl <markus@openbsd.org>
@@ -858,7 +858,7 @@ mm_answer_authpassword(int sock, Buffer *m)
858	/* Only authenticate if the context is valid */	858	/* Only authenticate if the context is valid */
859	authenticated = options.password_authentication &&	859	authenticated = options.password_authentication &&
860	auth_password(authctxt, passwd);	860	auth_password(authctxt, passwd);
861	memset(passwd, 0, strlen(passwd));	861	explicit_bzero(passwd, strlen(passwd));
862	free(passwd);	862	free(passwd);
863		863
864	buffer_clear(m);	864	buffer_clear(m);
@@ -1800,13 +1800,13 @@ monitor_apply_keystate(struct monitor *pmonitor)
1800	/* XXX inefficient for large buffers, need: buffer_init_from_string */	1800	/* XXX inefficient for large buffers, need: buffer_init_from_string */
1801	buffer_clear(packet_get_input());	1801	buffer_clear(packet_get_input());
1802	buffer_append(packet_get_input(), child_state.input, child_state.ilen);	1802	buffer_append(packet_get_input(), child_state.input, child_state.ilen);
1803	memset(child_state.input, 0, child_state.ilen);	1803	explicit_bzero(child_state.input, child_state.ilen);
1804	free(child_state.input);	1804	free(child_state.input);
1805		1805
1806	buffer_clear(packet_get_output());	1806	buffer_clear(packet_get_output());
1807	buffer_append(packet_get_output(), child_state.output,	1807	buffer_append(packet_get_output(), child_state.output,
1808	child_state.olen);	1808	child_state.olen);
1809	memset(child_state.output, 0, child_state.olen);	1809	explicit_bzero(child_state.output, child_state.olen);
1810	free(child_state.output);	1810	free(child_state.output);
1811		1811
1812	/* Roaming */	1812	/* Roaming */