commit dcb1d0a67baa35b9645b19f2cf44f8ba3d0b30d1 Author: Nick Mathewson <nickm@torproject.org> Date: Mon Jun 18 13:20:02 2012 -0400 add bug number and explanation to changes/bug2385; call it a feature --- changes/bug2385 | 12 ++++++++---- 1 files changed, 8 insertions(+), 4 deletions(-) diff --git a/changes/bug2385 b/changes/bug2385 index e7151f4..5d571d9 100644 --- a/changes/bug2385 +++ b/changes/bug2385 @@ -1,5 +1,9 @@ - o Minor bugfixes: - - Clear keys and key-derived material left on the stack in rendservice.c - and rendclient.c + o Minor features (security): + - Clear keys and key-derived material left on the stack in + rendservice.c and rendclient.c. This should make us more + forward-secure against cold-boot attacks and the like. Fix for + bug 2385. + - Check return value of crypto_pk_write_private_key_to_string() in - end_service_load_keys() + end_service_load_keys(). This should make us more forward-secure + against cold-boot attacks and the like. Fix for bug 2385.