open-dsi
/
postgres
mirror of https://github.com/postgres/postgres
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Use explicit_bzero() when clearing sslpassword in libpq

Browse Source 
Since 74a308c, any security-sensitive information gets cleared from
memory this way.  This was forgotten in 4dc6355.

Author: Daniel Gustafsson
Reviewed-by: Peter Eisentraut, Michael Paquier
Discussion: https://postgr.es/m/935443BA-D42E-4CE0-B181-1AD79E6DD45A@yesql.se
pull/54/head
Michael Paquier 5 years ago
parent d2a9959907
commit e4db972ed5
1 changed files with 3 additions and 0 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 3
      src/interfaces/libpq/fe-connect.c

3
src/interfaces/libpq/fe-connect.c
Unescape View File

@ -4037,7 +4037,10 @@ freePGconn(PGconn *conn)
if (conn->sslkey)
free(conn->sslkey);
if (conn->sslpassword)
{
explicit_bzero(conn->sslpassword, strlen(conn->sslpassword));
free(conn->sslpassword);
}
if (conn->sslrootcert)
free(conn->sslrootcert);
if (conn->sslcrl)

Write Preview
Loading…
Cancel
Save