"Michael Howard" <mikehow@microsoft.com> writes: > On the surface, this looks fine, until you look at the ASM output, and > you see the call to memset has been removed by the optimizer because > szPwd is not read once the function completes. Hence, the secret data is > still floating in memory. Thats why you have to declare such data volatile -- to prevent optimizers from becoming too anxious to help. -- Perry E. Metzger perry@piermont.com
