On 12/06/2016 10:42 PM, Richard Levitte wrote:
> The easiest was actually to rewrite PEM_read_bio_PrivateKey()
> entirely, so it solely uses the internal store_file functions I've
> provided.
> I wonder what kind of impact this would have on the community at
> large.

If you do that, please ensure that secure memory is used for the
temporary buffers involved in reading private key material (assuming
that some form of https://github.com/openssl/openssl/pull/1700 gets merged).

openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Reply via email to