|
@@ -318,7 +318,9 @@ int BN_generate_dsa_nonce(BIGNUM *out, const BIGNUM *range,
|
|
|
err:
|
|
|
EVP_MD_CTX_free(mdctx);
|
|
|
EVP_MD_free(md);
|
|
|
- OPENSSL_free(k_bytes);
|
|
|
+ OPENSSL_clear_free(k_bytes, num_k_bytes);
|
|
|
+ OPENSSL_cleanse(digest, sizeof(digest));
|
|
|
+ OPENSSL_cleanse(random_bytes, sizeof(random_bytes));
|
|
|
OPENSSL_cleanse(private_bytes, sizeof(private_bytes));
|
|
|
return ret;
|
|
|
}
|