From 89e8f265e37758c3aaaa7dc580d24d96d37cc8a8 Mon Sep 17 00:00:00 2001
From: NIIBE Yutaka <gniibe@fsij.org>
Date: Wed, 25 May 2022 16:00:10 +0900
Subject: server,client: Wipe the outbound buffer when CONFIDENTIAL.

* src/assuan-buffer.c (assuan_send_data): Wipe the buffer.

--

GnuPG-bug-id: 5977
Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>
---
 src/assuan-buffer.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/assuan-buffer.c b/src/assuan-buffer.c
index be87280..f131a8d 100644
--- a/src/assuan-buffer.c
+++ b/src/assuan-buffer.c
@@ -499,6 +499,8 @@ assuan_send_data (assuan_context_t ctx, const void *buffer, size_t length)
   if (!buffer)
     { /* flush what we have */
       _assuan_cookie_write_flush (ctx);
+      if (ctx->flags.confidential)
+        wipememory (ctx->outbound.data.line, LINELENGTH);
       if (ctx->outbound.data.error)
         return ctx->outbound.data.error;
       if (!ctx->is_server)
-- 
cgit v1.2.1