> This patch is a variant of what we've been using to help protect customer keys for a decade.
So it protects keys against heartbleed, but not other HTTP related data (urls, cookies, headers, etc).