[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ssh_string_burn guarantees?
[Thread Prev] | [Thread Next]
- Subject: Re: ssh_string_burn guarantees?
- From: William Orr <will@xxxxxxxxxxxx>
- Reply-to: libssh@xxxxxxxxxx
- Date: Mon, 15 Sep 2014 15:35:11 -0700
- To: libssh@xxxxxxxxxx
- Cc: Andreas Schneider <asn@xxxxxxxxxxxxxx>
Thanks for the quick turnaround! On 09/15/2014 11:46 AM, Andreas Schneider wrote: > On Monday 15 September 2014 08:16:27 William Orr wrote: >> Hey, > > Hi, > >> I was looking through the source of ssh_string_burn, and I was wondering >> what guarantees there were to ensure it doesn't get optimized out. >> >> Now, the new C11 memset_s(3) can be used to make those guarantees on >> platforms that have a new enough libc. Other platforms offer an >> explicit_bzero(3) function with that guarantee. > > thanks for bringing this up! Fixed with the latest commit to the master and > 0.6 branch. > > > -- andreas >
Attachment:
signature.asc
Description: OpenPGP digital signature
| ssh_string_burn guarantees? | William Orr <will@xxxxxxxxxxxx> |
| Re: ssh_string_burn guarantees? | Andreas Schneider <asn@xxxxxxxxxxxxxx> |