honeymoose
/
OpenSearch
mirror of https://github.com/honeymoose/OpenSearch.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
OpenSearch/libs
History
Tim Vernum 8b566aea47
Fix use of password protected PKCS#8 keys for SSL (#55567) 
PEMUtils would incorrectly fill the encryption password with zeros
(the '\0' character) after decrypting a PKCS#8 key.

Since PEMUtils did not take ownership of this password it should not
zero it out because it does not know whether the caller will use that
password array again. This is actually what PEMKeyConfig does - it
uses the key encryption password as the password for the ephemeral
keystore that it creates in order to build a KeyManager.

Backport of: #55457
 		2020-04-22 16:38:51 +10:00
..
cli Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
core Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
dissect Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
geo Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
grok Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
nio Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
plugin-classloader Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
secure-sm Use task avoidance with forbidden apis (#55034) 2020-04-15 13:27:53 -07:00
ssl-config Fix use of password protected PKCS#8 keys for SSL (#55567) 2020-04-22 16:38:51 +10:00
x-content Remove deprecated third-party methods from tests (#55255) (#55269) 2020-04-15 17:54:47 -04:00
build.gradle Apply 2-space indent to all gradle scripts (#49071) 2019-11-14 11:01:23 +00:00