[openssl-dev] [RFC v2 2/2] pem: load engine keys
Benjamin Kaduk
bkaduk at akamai.com
Wed Dec 7 16:53:14 UTC 2016
On 12/06/2016 10:42 PM, Richard Levitte wrote:
> The easiest was actually to rewrite PEM_read_bio_PrivateKey()
> entirely, so it solely uses the internal store_file functions I've
> provided.
> I wonder what kind of impact this would have on the community at
> large.
>
If you do that, please ensure that secure memory is used for the
temporary buffers involved in reading private key material (assuming
that some form of https://github.com/openssl/openssl/pull/1700 gets merged).
-Ben
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20161207/5a123a2c/attachment.html>
More information about the openssl-dev
mailing list