OpenSearch

History

Tim Vernum 8b566aea47 Fix use of password protected PKCS#8 keys for SSL (#55567 ) PEMUtils would incorrectly fill the encryption password with zeros (the '\0' character) after decrypting a PKCS#8 key. Since PEMUtils did not take ownership of this password it should not zero it out because it does not know whether the caller will use that password array again. This is actually what PEMKeyConfig does - it uses the key encryption password as the password for the ephemeral keystore that it creates in order to build a KeyManager. Backport of: #55457	2020-04-22 16:38:51 +10:00
..
src	Fix use of password protected PKCS#8 keys for SSL (#55567 )	2020-04-22 16:38:51 +10:00
build.gradle	Use task avoidance with forbidden apis (#55034 )	2020-04-15 13:27:53 -07:00

Fix use of password protected PKCS#8 keys for SSL (#55567 )

PEMUtils would incorrectly fill the encryption password with zeros
(the '\0' character) after decrypting a PKCS#8 key.

Since PEMUtils did not take ownership of this password it should not
zero it out because it does not know whether the caller will use that
password array again. This is actually what PEMKeyConfig does - it
uses the key encryption password as the password for the ephemeral
keystore that it creates in order to build a KeyManager.

Backport of: #55457

2020-04-22 16:38:51 +10:00

src

Fix use of password protected PKCS#8 keys for SSL (#55567 )

2020-04-22 16:38:51 +10:00

build.gradle

Use task avoidance with forbidden apis (#55034 )

2020-04-15 13:27:53 -07:00