From 0496f641d50b1d85b847cdf4cd8d95babf40cf63 Mon Sep 17 00:00:00 2001
From: Radoslaw Zarzynski <rzarzyns@redhat.com>
Date: Fri, 15 Nov 2019 23:53:50 +0100
Subject: [PATCH] msg/async: switch to ceph::crypto::zeroize_for_security().

Signed-off-by: Radoslaw Zarzynski <rzarzyns@redhat.com>
(cherry picked from commit 050958398767cbd6d3326a3f74df82f5214a1db5)
---
 src/msg/async/crypto_onwire.cc | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/msg/async/crypto_onwire.cc b/src/msg/async/crypto_onwire.cc
index 3858091357d2f..acf3f66689e14 100644
--- a/src/msg/async/crypto_onwire.cc
+++ b/src/msg/async/crypto_onwire.cc
@@ -7,6 +7,7 @@
 #include "crypto_onwire.h"
 
 #include "common/debug.h"
+#include "common/ceph_crypto.h"
 #include "include/types.h"
 
 #define dout_subsys ceph_subsys_ms
@@ -59,7 +60,7 @@ public:
   }
 
   ~AES128GCM_OnWireTxHandler() override {
-    memset(&nonce, 0, sizeof(nonce));
+    ::ceph::crypto::zeroize_for_security(&nonce, sizeof(nonce));
   }
 
   std::uint32_t calculate_segment_size(std::uint32_t size) override
@@ -169,7 +170,7 @@ public:
   }
 
   ~AES128GCM_OnWireRxHandler() override {
-    memset(&nonce, 0, sizeof(nonce));
+    ::ceph::crypto::zeroize_for_security(&nonce, sizeof(nonce));
   }
 
   std::uint32_t get_extra_size_at_final() override {
-- 
2.39.5