On 09/12/2016 09:13 AM, Daniel P. Berrange wrote: > The 'out' buffer will hold a key derived from master > password, so it is best practice to clear this buffer > when no longer required.
Still might be worth an explicit mention that we are currently not going to worry about even tougher protections against copies stored in swap. > > Signed-off-by: Daniel P. Berrange <[email protected]> > --- > crypto/pbkdf.c | 13 +++++++++---- > 1 file changed, 9 insertions(+), 4 deletions(-) > Reviewed-by: Eric Blake <[email protected]> -- Eric Blake eblake redhat com +1-919-301-3266 Libvirt virtualization library http://libvirt.org
signature.asc
Description: OpenPGP digital signature
