talexander
/
freebsd_amp_hwpstate
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

When freeing buffers in the db routines, also zeroize them 

This should solve the bug where a coredumping ftpd reveals
encrypted passwords.
Obtained from: OpenBSD
This commit is contained in:
Guido van Rooij 1996-10-17 18:27:58 +00:00
parent 0082fb4657
commit 102b3fa4c8
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
lib/libc/db/hash/hash_buf.c
View File

@ -331,8 +331,10 @@ __buf_free(hashp, do_free, to_disk)
} }
/* Check if we are freeing stuff */ /* Check if we are freeing stuff */
if (do_free) { if (do_free) {
if (bp->page) if (bp->page) {
(void)memset(bp->page, 0, hashp->BSIZE);
free(bp->page); free(bp->page);
}
BUF_REMOVE(bp); BUF_REMOVE(bp);
free(bp); free(bp);
bp = LRU; bp = LRU;