* build-packet.c (do_plaintext), encode.c (encode_sesskey, encode_simple,

encode_crypt), sign.c (write_plaintext_packet): Use wipememory() instead of memset() to wipe sensitive memory as the memset() might be optimized away.
2025-07-03 22:56:33 +02:00 · 2002-10-31 15:28:19 +00:00 · 2002-10-31 15:28:19 +00:00 · 456f89ea7a
commit 456f89ea7a
parent 92fb1251d0
4 changed files with 12 additions and 5 deletions
--- a/g10/encode.c
+++ b/g10/encode.c
@ -98,7 +98,7 @@ encode_sesskey( DEK *dek, DEK **ret_dek, byte *enckey )
    cipher_close( hd );

    memcpy( enckey, buf, c->keylen + 1 );
-    memset( buf, 0, sizeof buf ); /* burn key */
+    wipememory( buf, sizeof buf ); /* burn key */
    *ret_dek = c;
 }

@ -354,7 +354,7 @@ encode_simple( const char *filename, int mode, int compat )
 		log_error("copying input to output failed: %s\n", g10_errstr(rc) );
 		break;
 	    }
-	memset(copy_buffer, 0, 4096); /* burn buffer */
+	wipememory(copy_buffer, 4096); /* burn buffer */
    }

    /* finish the stuff */
@ -597,7 +597,7 @@ encode_crypt( const char *filename, STRLIST remusr )
                          g10_errstr(rc) );
 		break;
 	    }
-	memset(copy_buffer, 0, 4096); /* burn buffer */
+	wipememory(copy_buffer, 4096); /* burn buffer */
    }

    /* finish the stuff */