diff options
| author | Stanislav Malyshev <stas@php.net> | 2019-04-06 19:06:16 -0700 |
|---|---|---|
| committer | Stanislav Malyshev <stas@php.net> | 2019-04-06 19:06:16 -0700 |
| commit | 805a3306811f8dcf19b9ad7669e00eefcc9c1af9 (patch) | |
| tree | 3f8d7d863c5a878ae86d24ebc84cc484da799345 /ext | |
| parent | 0c6a68fa362be996d9a027ef4847c52a6bfa7873 (diff) | |
| parent | d1d692abe71b04177747758237249253b175b8c2 (diff) | |
| download | php-git-805a3306811f8dcf19b9ad7669e00eefcc9c1af9.tar.gz | |
Merge branch 'PHP-7.2' into PHP-7.3
* PHP-7.2:
Always use ZEND_SECURE_ZERO() when cleaning up data
bump versions after release
Diffstat (limited to 'ext')
| -rw-r--r-- | ext/hash/hash_sha3.c | 2 | ||||
| -rw-r--r-- | ext/hash/hash_snefru.c | 2 | ||||
| -rw-r--r-- | ext/standard/sha1.c | 4 |
3 files changed, 4 insertions, 4 deletions
diff --git a/ext/hash/hash_sha3.c b/ext/hash/hash_sha3.c index 86cfabe934..cde7a43e3f 100644 --- a/ext/hash/hash_sha3.c +++ b/ext/hash/hash_sha3.c @@ -194,7 +194,7 @@ static void PHP_SHA3_Final(unsigned char* digest, } // Zero out context - memset(ctx, 0, sizeof(PHP_SHA3_CTX)); + ZEND_SECURE_ZERO(ctx, sizeof(PHP_SHA3_CTX)); } // ========================================================================== diff --git a/ext/hash/hash_snefru.c b/ext/hash/hash_snefru.c index bab15c505a..62b8e7d03a 100644 --- a/ext/hash/hash_snefru.c +++ b/ext/hash/hash_snefru.c @@ -127,7 +127,7 @@ static inline void SnefruTransform(PHP_SNEFRU_CTX *context, const unsigned char ((input[i+2] & 0xff) << 8) | (input[i+3] & 0xff); } Snefru(context->state); - memset(&context->state[8], 0, sizeof(uint32_t) * 8); + ZEND_SECURE_ZERO(&context->state[8], sizeof(uint32_t) * 8); } PHP_HASH_API void PHP_SNEFRUInit(PHP_SNEFRU_CTX *context) diff --git a/ext/standard/sha1.c b/ext/standard/sha1.c index 27a90f437b..da1247dbef 100644 --- a/ext/standard/sha1.c +++ b/ext/standard/sha1.c @@ -244,7 +244,7 @@ PHPAPI void PHP_SHA1Final(unsigned char digest[20], PHP_SHA1_CTX * context) /* Zeroize sensitive information. */ - memset((unsigned char*) context, 0, sizeof(*context)); + ZEND_SECURE_ZERO((unsigned char*) context, sizeof(*context)); } /* }}} */ @@ -355,7 +355,7 @@ const unsigned char block[64]; state[4] += e; /* Zeroize sensitive information. */ - memset((unsigned char*) x, 0, sizeof(x)); + ZEND_SECURE_ZERO((unsigned char*) x, sizeof(x)); } /* }}} */ |