diff options
| author | Stanislav Malyshev <stas@php.net> | 2019-04-06 19:06:29 -0700 |
|---|---|---|
| committer | Stanislav Malyshev <stas@php.net> | 2019-04-06 19:06:29 -0700 |
| commit | e1a39387d13048222d7d8a1aff8fe4ad478419ec (patch) | |
| tree | d9535bb60aa1c85085ed5b165a19dffe82f57fde | |
| parent | 26725842cfa14d0c2bb7dd8ea9a1c9bbba64a4ef (diff) | |
| parent | 3eae4f677a604a547a1847a4fb0ba54e813c90c9 (diff) | |
| download | php-git-e1a39387d13048222d7d8a1aff8fe4ad478419ec.tar.gz | |
Merge branch 'PHP-7.4'
* PHP-7.4:
Always use ZEND_SECURE_ZERO() when cleaning up data
bump versions after release
| -rw-r--r-- | ext/hash/hash_sha3.c | 2 | ||||
| -rw-r--r-- | ext/hash/hash_snefru.c | 2 | ||||
| -rw-r--r-- | ext/standard/sha1.c | 4 |
3 files changed, 4 insertions, 4 deletions
diff --git a/ext/hash/hash_sha3.c b/ext/hash/hash_sha3.c index 8d0a1e7f8b..77cec630d8 100644 --- a/ext/hash/hash_sha3.c +++ b/ext/hash/hash_sha3.c @@ -200,7 +200,7 @@ static void PHP_SHA3_Final(unsigned char* digest, } // Zero out context - memset(ctx, 0, sizeof(PHP_SHA3_CTX)); + ZEND_SECURE_ZERO(ctx, sizeof(PHP_SHA3_CTX)); } // ========================================================================== diff --git a/ext/hash/hash_snefru.c b/ext/hash/hash_snefru.c index 0e6b703f2a..4bca34d6c3 100644 --- a/ext/hash/hash_snefru.c +++ b/ext/hash/hash_snefru.c @@ -127,7 +127,7 @@ static inline void SnefruTransform(PHP_SNEFRU_CTX *context, const unsigned char ((input[i+2] & 0xff) << 8) | (input[i+3] & 0xff); } Snefru(context->state); - memset(&context->state[8], 0, sizeof(uint32_t) * 8); + ZEND_SECURE_ZERO(&context->state[8], sizeof(uint32_t) * 8); } PHP_HASH_API void PHP_SNEFRUInit(PHP_SNEFRU_CTX *context) diff --git a/ext/standard/sha1.c b/ext/standard/sha1.c index 886c98cc6b..f31dd46be3 100644 --- a/ext/standard/sha1.c +++ b/ext/standard/sha1.c @@ -244,7 +244,7 @@ PHPAPI void PHP_SHA1Final(unsigned char digest[20], PHP_SHA1_CTX * context) /* Zeroize sensitive information. */ - memset((unsigned char*) context, 0, sizeof(*context)); + ZEND_SECURE_ZERO((unsigned char*) context, sizeof(*context)); } /* }}} */ @@ -355,7 +355,7 @@ const unsigned char block[64]; state[4] += e; /* Zeroize sensitive information. */ - memset((unsigned char*) x, 0, sizeof(x)); + ZEND_SECURE_ZERO((unsigned char*) x, sizeof(x)); } /* }}} */ |