On 12/06/2016 10:42 PM, Richard Levitte wrote: > The easiest was actually to rewrite PEM_read_bio_PrivateKey() > entirely, so it solely uses the internal store_file functions I've > provided. > I wonder what kind of impact this would have on the community at > large. >
If you do that, please ensure that secure memory is used for the temporary buffers involved in reading private key material (assuming that some form of https://github.com/openssl/openssl/pull/1700 gets merged). -Ben
-- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
