pluto: Securely wipe quick mode keys from memory.
authorThomas Egerer <thomas.egerer@secunet.com>
Tue, 10 May 2011 13:39:00 +0000 (15:39 +0200)
committerTobias Brunner <tobias@strongswan.org>
Tue, 10 May 2011 13:39:00 +0000 (15:39 +0200)
commit59965aaf96005aafd8cfe49e73139513d99cfdfd
treebb6f8b13f386cdddfce3cff3fbaf26d4c0ddf259
parent9e6bb93ab94d707f49c3598dd8252cf3a62187ae
pluto: Securely wipe quick mode keys from memory.

Keying material is derived in two separate steps for local and remote
endpoint. This allows us to securely wipe local/remote secrets
separately, too -- a precondition to wipe quick mode keys from memory in
a secure fashion.
src/pluto/ipsec_doi.c