[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: GnuTLS and zeroing keys in Emacs
From: |
Ted Zlatanov |
Subject: |
Re: GnuTLS and zeroing keys in Emacs |
Date: |
Mon, 17 Jul 2017 09:52:51 -0400 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/26.0.50 (gnu/linux) |
On Sun, 16 Jul 2017 16:53:20 -0700 Paul Eggert <address@hidden> wrote:
PE> Ted Zlatanov wrote:
>> the best way is to either use gnutls_memset() (available since only
>> 3.4.0 in lib/safe-memfuncs.c) or to copy it.
PE> These days glibc's explicit_bzero is a better way to go, as its
implementation
PE> should be more reliable than the 'volatile' trick used by gnutls_memset. So
I
PE> installed the attached patches into master: they either use explicit_bzero,
or
PE> copy it.
PE> I'll file a bug report with the GnuTLS folks to suggest that they use
PE> explicit_bzero if available.
Terrific, thanks again for working on this.
Ted