[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH 4/6] pki_gcrypt: Burn key material


* src/pki_gcrypt.c (b64decode_rsa_privatekey): Burn key material.
(b64decode_dsa_privatekey): Likewise.

Signed-off-by: Justus Winter <justus@xxxxxxxxxxx>
---
 src/pki_gcrypt.c | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/src/pki_gcrypt.c b/src/pki_gcrypt.c
index b901ea9..bc6a33e 100644
--- a/src/pki_gcrypt.c
+++ b/src/pki_gcrypt.c
@@ -509,13 +509,19 @@ static int b64decode_rsa_privatekey(const char *pkey, gcry_sexp_t *r,
   }
 
 error:
+  ssh_string_burn(n);
   ssh_string_free(n);
+  ssh_string_burn(e);
   ssh_string_free(e);
+  ssh_string_burn(d);
   ssh_string_free(d);
+  ssh_string_burn(p);
   ssh_string_free(p);
+  ssh_string_burn(q);
   ssh_string_free(q);
   ssh_string_free(unused1);
   ssh_string_free(unused2);
+  ssh_string_burn(u);
   ssh_string_free(u);
   ssh_string_free(v);
 
@@ -580,10 +586,15 @@ static int b64decode_dsa_privatekey(const char *pkey, gcry_sexp_t *r, ssh_auth_c
   }
 
 error:
+  ssh_string_burn(p);
   ssh_string_free(p);
+  ssh_string_burn(q);
   ssh_string_free(q);
+  ssh_string_burn(g);
   ssh_string_free(g);
+  ssh_string_burn(y);
   ssh_string_free(y);
+  ssh_string_burn(x);
   ssh_string_free(x);
   ssh_string_free(v);
 
-- 
2.1.4


References:
[PATCH 1/6] torture: Fix guardJustus Winter <justus@xxxxxxxxxxx>
Archive administrator: postmaster@lists.cynapses.org