crypto: fix secure burning, structure members naming

Reviewed-by: Andreas Schneider <asn@samba.org>
2025-08-19 01:25:45 +03:00 · 2014-04-24 08:55:52 +02:00
parent 0cd0f685c9
commit 33cd594f1f
2 changed files with 6 additions and 7 deletions
--- a/include/libssh/crypto.h
+++ b/include/libssh/crypto.h
@@ -115,9 +115,9 @@ struct ssh_cipher_struct {
    /* sets the new key for immediate use */
    int (*set_encrypt_key)(struct ssh_cipher_struct *cipher, void *key, void *IV);
    int (*set_decrypt_key)(struct ssh_cipher_struct *cipher, void *key, void *IV);
-    void (*cbc_encrypt)(struct ssh_cipher_struct *cipher, void *in, void *out,
+    void (*encrypt)(struct ssh_cipher_struct *cipher, void *in, void *out,
        unsigned long len);
-    void (*cbc_decrypt)(struct ssh_cipher_struct *cipher, void *in, void *out,
+    void (*decrypt)(struct ssh_cipher_struct *cipher, void *in, void *out,
        unsigned long len);
 };
--- a/src/packet_crypt.c
+++ b/src/packet_crypt.c
@@ -77,11 +77,10 @@ int packet_decrypt(ssh_session session, void *data,uint32_t len) {
    SAFE_FREE(out);
    return -1;
  }
-  crypto->cbc_decrypt(crypto,data,out,len);
+  crypto->decrypt(crypto,data,out,len);
  memcpy(data,out,len);
-  memset(out,0,len);
+  BURN_BUFFER(out, len);
  SAFE_FREE(out);
  return 0;
 }
@@ -136,10 +135,10 @@ unsigned char *packet_encrypt(ssh_session session, void *data, uint32_t len) {
 #endif
  }
-  crypto->cbc_encrypt(crypto, data, out, len);
+  crypto->encrypt(crypto, data, out, len);
  memcpy(data, out, len);
-  memset(out, 0, len);
+  BURN_BUFFER(out, len);
  SAFE_FREE(out);
  if (session->version == 2) {