cheng/libsodium
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

zero the poly1305 state in crypto_secretbox_chacha20poly1305*

Browse Source
This commit is contained in:
Frank Denis 2014-06-20 16:28:00 -07:00
parent bc24968993
commit c7418dfd58
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/libsodium/crypto_secretbox/chacha20poly1305/secretbox_chacha20poly1305.c
View File

@ -50,6 +50,7 @@ crypto_secretbox_chacha20poly1305_ad(unsigned char *c,
crypto_onetimeauth_poly1305_update(&state, slen, sizeof slen); crypto_onetimeauth_poly1305_update(&state, slen, sizeof slen);
crypto_onetimeauth_poly1305_final(&state, c); crypto_onetimeauth_poly1305_final(&state, c);
sodium_memzero(&state, sizeof state);
return 0; return 0;
} }
@ -82,7 +83,6 @@ crypto_secretbox_chacha20poly1305_ad_open(unsigned char *m,
if (clen < crypto_secretbox_chacha20poly1305_ZEROBYTES) { if (clen < crypto_secretbox_chacha20poly1305_ZEROBYTES) {
return -1; return -1;
} }
crypto_stream_chacha20(block0, sizeof block0, n, k); crypto_stream_chacha20(block0, sizeof block0, n, k);
crypto_onetimeauth_poly1305_init(&state, block0); crypto_onetimeauth_poly1305_init(&state, block0);
sodium_memzero(block0, sizeof block0); sodium_memzero(block0, sizeof block0);
@ -98,6 +98,7 @@ crypto_secretbox_chacha20poly1305_ad_open(unsigned char *m,
crypto_onetimeauth_poly1305_update(&state, slen, sizeof slen); crypto_onetimeauth_poly1305_update(&state, slen, sizeof slen);
crypto_onetimeauth_poly1305_final(&state, mac); crypto_onetimeauth_poly1305_final(&state, mac);
sodium_memzero(&state, sizeof state);
ret = crypto_verify_16(mac, c); ret = crypto_verify_16(mac, c);
sodium_memzero(mac, sizeof mac); sodium_memzero(mac, sizeof mac);