[170903] in North American Network Operators' Group
Re: DNSSEC?
daemon@ATHENA.MIT.EDU (Mark Andrews)
Sat Apr 12 02:22:45 2014
To: Jimmy Hess <mysidia@gmail.com>
From: Mark Andrews <marka@isc.org>
In-reply-to: Your message of "Sat, 12 Apr 2014 00:45:20 -0500."
<CAAAwwbXZwAwR0wOc-oPRrq+J_+=yBTtRsGPQ-RGQB-k_6UYU2Q@mail.gmail.com>
Date: Sat, 12 Apr 2014 16:22:20 +1000
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Don't think for one second that using malloc directly would have
saved OpenSSL here. By default malloc does not zero freed memory
it returns. It is a feature that needs to be enabled. If OpenSSL
wanted to zero memory it was returning could have done that itself.
The only difference is that *some* malloc implementations examine
the envionment and change their behaviour based on that.
That OpenSSL used its own memory allocator was a problem does not
stand up to rigourous analysis.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka@isc.org
