Package: wnpp Severity: wishlist Owner: Russell Coker <[email protected]> X-Debbugs-Cc: [email protected]
* Package name : libcrypt-nacl-sodium-perl Version : 1.0.8.0 Upstream Contact: Alex J. G. BurzyĆski <[email protected]> * URL : https://metacpan.org/dist/Crypt-NaCl-Sodium * License : Artistic license or GPL1 Programming Lang: Perl Description : NaCl compatible modern, easy-to-use library for encryption, decryption, signatures, password hashing and more Heartbleed was a serious vulnerability in OpenSSL. The ability to read past the end of a buffer is a serious bug, but what made it even worse is the fact that secret data could be disclosed by doing so. . In order to mitigate the impact of similar bugs, Data::BytesLocker provides heap allocation functions for storing sensitive data. . These are not general-purpose allocation functions. In particular, they are slower than regular scalars, and they require 3 or 4 extra pages of virtual memory (usually between 12-16kb extra memory will be used). . The stored data is placed at the end of a page boundary, immediately followed by a guard page. As a result, accessing memory past the end of the region will immediately terminate the application. . This description was automagically extracted from the module by dh-make-perl. This is part of the dependencies for matrixtool the Perl CLI for Matrix. I can maintain this on my own but I'd appreciate help.
