git.samba.org
/
metze
/
heimdal
/
wip.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
a7c3327
)
krb5: always zero elastic storage
author
Luke Howard
<lukeh@padl.com>
Tue, 14 Apr 2020 22:58:27 +0000
(08:58 +1000)
committer
Luke Howard
<lukeh@padl.com>
Tue, 14 Apr 2020 23:00:20 +0000
(09:00 +1000)
Elastic storage (returned from krb5_storage_emem()) often contains secret keys.
Ensure memory is zeroed on free using memset_s() rather than memset().
lib/krb5/store_emem.c
patch
|
blob
|
history
diff --git
a/lib/krb5/store_emem.c
b/lib/krb5/store_emem.c
index 6d95bcf525a8850540f5713449f95ef9de12f66b..d3eef5b1e12dee2fd9a32fe727ce7a53b933bae1 100644
(file)
--- a/
lib/krb5/store_emem.c
+++ b/
lib/krb5/store_emem.c
@@
-139,7
+139,7
@@
static void
emem_free(krb5_storage *sp)
{
emem_storage *s = sp->data;
- memset
(s->base
, 0, s->len);
+ memset
_s(s->base, s->len
, 0, s->len);
free(s->base);
}