sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-05 00:00:45 -04:00
Code Issues Projects Releases Wiki Activity

pem: Clear chunks after decrypting files

Browse Source
This commit is contained in:
Tobias Brunner 2021-09-30 12:03:42 +02:00
parent 16d91ab761
commit 66e80f3d1b
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/libstrongswan/plugins/pem/pem_builder.c
View File

@ -147,7 +147,7 @@ static status_t pem_decrypt(chunk_t *blob, encryption_algorithm_t alg,
} }
crypter->destroy(crypter); crypter->destroy(crypter);
memcpy(blob->ptr, decrypted.ptr, blob->len); memcpy(blob->ptr, decrypted.ptr, blob->len);
chunk_free(&decrypted); chunk_clear(&decrypted);
/* determine amount of padding */ /* determine amount of padding */
last_padding_pos = blob->ptr + blob->len - 1; last_padding_pos = blob->ptr + blob->len - 1;
@ -354,7 +354,7 @@ static status_t pem_to_bin(chunk_t *blob, bool *pgp)
memcpy(blob->ptr, chunk.ptr, chunk.len); memcpy(blob->ptr, chunk.ptr, chunk.len);
blob->len = chunk.len; blob->len = chunk.len;
} }
free(chunk.ptr); chunk_clear(&chunk);
if (status != INVALID_ARG) if (status != INVALID_ARG)
{ /* try again only if passphrase invalid */ { /* try again only if passphrase invalid */
break; break;