From abd64bc49595bc4828cb5a008d046c29a0513e78 Mon Sep 17 00:00:00 2001
From: NIIBE Yutaka <gniibe@fsij.org>
Date: Fri, 15 Jun 2012 13:26:27 +0900
Subject: [PATCH] clear random data after free

---
 ChangeLog    | 2 ++
 src/random.c | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/ChangeLog b/ChangeLog
index 6fe635d..da8f277 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,7 @@
 2012-06-15  Niibe Yutaka  <gniibe@fsij.org>
 
+	* src/random.c (random_bytes_free): Clear out random bytes.
+
 	More protection improvements.
 	* src/random.c (RANDOM_BYTES_LENGTH): It's 32 now (was: 16).
 	* src/gnuk.h (struct key_data_internal): Remove check, random,
diff --git a/src/random.c b/src/random.c
index 200d471..e52d785 100644
--- a/src/random.c
+++ b/src/random.c
@@ -58,7 +58,7 @@ random_bytes_get (void)
 void
 random_bytes_free (const uint8_t *p)
 {
-  (void)p;
+  memset (p, 0, RANDOM_BYTES_LENGTH);
   neug_flush ();
 }