Cleanup for cryptographic algorithms vs. compiler optimizations

Patrick Lamaiziere patfbsd at
Sun Jun 13 21:56:17 UTC 2010

Le Sun, 13 Jun 2010 23:35:12 +0200,
Bernd Walter <ticso at> a écrit :

> Go back to the originating mail.
> Crypto code wasn't aware of this problem and this is a way more
> obviuous optimization than function exchange.
> And I do believe that the programmers were clever people.
> Alarming, isn't it?

The removal of dead store by gcc is recent.

There was a discussion about this problem on the linux crypto mailing
list, see:

If i remember well, they have introduced a secure_memset() function or
something like that, but I do not find this piece of code any more.


More information about the freebsd-current mailing list