mirror of
https://github.com/phpseclib/phpseclib.git
synced 2025-01-13 18:02:58 +00:00
SSH2: sodium_compat doesn't support memzero
This commit is contained in:
parent
53dcc19441
commit
e3557220d7
@ -1713,7 +1713,14 @@ class SSH2
|
|||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
$key = new BigInteger(sodium_crypto_scalarmult($x, $fBytes), 256);
|
$key = new BigInteger(sodium_crypto_scalarmult($x, $fBytes), 256);
|
||||||
sodium_memzero($x);
|
// sodium_compat doesn't emulate sodium_memzero
|
||||||
|
// also, with v1 of libsodium API the extension identifies itself as
|
||||||
|
// libsodium whereas v2 of the libsodium API (what PHP 7.2+ includes)
|
||||||
|
// identifies itself as sodium. sodium_compat uses the v1 API to
|
||||||
|
// emulate the v2 API if it's the v1 API that's available
|
||||||
|
if (extension_loaded('sodium') || extension_loaded('libsodium')) {
|
||||||
|
sodium_memzero($x);
|
||||||
|
}
|
||||||
} else {
|
} else {
|
||||||
$f = new BigInteger($fBytes, -256);
|
$f = new BigInteger($fBytes, -256);
|
||||||
$key = $f->modPow($x, $prime);
|
$key = $f->modPow($x, $prime);
|
||||||
|
Loading…
Reference in New Issue
Block a user