[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ssh_string_burn guarantees?
[Thread Prev] | [Thread Next]
- Subject: Re: ssh_string_burn guarantees?
- From: Andreas Schneider <asn@xxxxxxxxxxxxxx>
- Reply-to: libssh@xxxxxxxxxx
- Date: Mon, 15 Sep 2014 20:46:56 +0200
- To: libssh@xxxxxxxxxx
On Monday 15 September 2014 08:16:27 William Orr wrote: > Hey, Hi, > I was looking through the source of ssh_string_burn, and I was wondering > what guarantees there were to ensure it doesn't get optimized out. > > Now, the new C11 memset_s(3) can be used to make those guarantees on > platforms that have a new enough libc. Other platforms offer an > explicit_bzero(3) function with that guarantee. thanks for bringing this up! Fixed with the latest commit to the master and 0.6 branch. -- andreas -- Andreas Schneider GPG-ID: CC014E3D www.cryptomilk.org asn@xxxxxxxxxxxxxx
Attachment:
signature.asc
Description: This is a digitally signed message part.
| Re: ssh_string_burn guarantees? | William Orr <will@xxxxxxxxxxxx> |
| ssh_string_burn guarantees? | William Orr <will@xxxxxxxxxxxx> |