using secure memory where applicable using sodium_malloc or sodium_mlock, where not

src/encryption.c

@@ -70,12 +70,12 @@ int pcpdecrypt(char *id, int useid, char *infile, char *outfile, char *passwd, i
 		     "Enter passphrase for symetric decryption", NULL, 1);
       }
       else {
-	passphrase = ucmalloc(strlen(passwd)+1);
-	strncpy(passphrase, passwd, strlen(passwd));
+	passphrase = smalloc(strlen(passwd)+1);
+	memcpy(passphrase, passwd, strlen(passwd) + 1);
       }
 
       symkey = pcp_scrypt(ptx, passphrase, strlen(passphrase), salt, 90);
-      ucfree(passphrase, strlen(passphrase));
+      sfree(passphrase);
       free(salt);
     }
     else if(head == PCP_ASYM_CIPHER || head == PCP_ASYM_CIPHER_SIG || head == PCP_ASYM_CIPHER_ANON) {
@@ -103,12 +103,12 @@ int pcpdecrypt(char *id, int useid, char *infile, char *outfile, char *passwd, i
 		       "Enter passphrase to decrypt your secret key", NULL, 1);
 	}
 	else {
-	  passphrase = ucmalloc(strlen(passwd)+1);
-	  strncpy(passphrase, passwd, strlen(passwd)+1);
+	  passphrase = smalloc(strlen(passwd)+1);
+	  memcpy(passphrase, passwd, strlen(passwd)+1);
 	}
 
 	secret = pcpkey_decrypt(ptx, secret, passphrase);
-	ucfree(passphrase, strlen(passphrase));
+	sfree(passphrase);
 	if(secret == NULL)
 	  goto errde3;
 
@@ -134,7 +134,7 @@ int pcpdecrypt(char *id, int useid, char *infile, char *outfile, char *passwd, i
   }
   else {
     dlen = pcp_decrypt_stream(ptx, pin, pout, NULL, symkey, verify, 0);
-    ucfree(symkey, 64);
+    sfree(symkey);
   }
 
   ps_close(pin);
@@ -151,7 +151,7 @@ int pcpdecrypt(char *id, int useid, char *infile, char *outfile, char *passwd, i
 
  errde3:
   if(symkey != NULL)
-     ucfree(symkey, 64);
+     free(symkey);
 
   return 1;
 }
@@ -177,15 +177,15 @@ int pcpencrypt(char *id, char *infile, char *outfile, char *passwd, plist_t *rec
                    "Enter passphrase for symetric encryption", "Repeat passphrase", 1);
     }
     else {
-      passphrase = ucmalloc(strlen(passwd)+1);
-      strncpy(passphrase, passwd, strlen(passwd));
+      passphrase = smalloc(strlen(passwd)+1);
+      memcpy(passphrase, passwd, strlen(passwd)+1);
     }
     byte *salt = ucmalloc(90); /*  FIXME: use random salt, concat it with result afterwards */
     char stsalt[] = PBP_COMPAT_SALT;
     memcpy(salt, stsalt, 90);
     symkey = pcp_scrypt(ptx, passphrase, strlen(passphrase), salt, 90);
     free(salt);
-    ucfree(passphrase, strlen(passphrase));
+    sfree(passphrase);
   }
   else if(id != NULL && recipient == NULL) {
     /*  lookup by id */
@@ -256,11 +256,11 @@ int pcpencrypt(char *id, char *infile, char *outfile, char *passwd, plist_t *rec
 		     "Enter passphrase to decrypt your secret key", NULL, 1);
         }
 	else {
-          passphrase = ucmalloc(strlen(passwd)+1);
-	  strncpy(passphrase, passwd, strlen(passwd)+1);
+          passphrase = smalloc(strlen(passwd)+1);
+	  memcpy(passphrase, passwd, strlen(passwd)+1);
         }
 	secret = pcpkey_decrypt(ptx, secret, passphrase);
-	ucfree(passphrase, strlen(passphrase));
+	sfree(passphrase);
 	if(secret == NULL)
 	  goto erren2;
       }
@@ -297,7 +297,7 @@ int pcpencrypt(char *id, char *infile, char *outfile, char *passwd, plist_t *rec
 
   if(self == 1) {
     clen = pcp_encrypt_stream_sym(ptx, pin, pout, symkey, 0, NULL);
-    ucfree(symkey, 64);
+    sfree(symkey);
   }
   else {
     clen = pcp_encrypt_stream(ptx, pin, pout, secret, pubhash, signcrypt, anon);
@@ -335,7 +335,7 @@ int pcpencrypt(char *id, char *infile, char *outfile, char *passwd, plist_t *rec
   pcphash_cleanpub(pubhash);
 
   if(symkey != NULL)
-    ucfree(symkey, 64);
+    sfree(symkey);
 
  erren3:
 

src/keymgmt.c

@@ -83,7 +83,7 @@ void pcp_keygen(char *passwd) {
   }
   else {
     passphrase = ucmalloc(strlen(passwd)+1);
-    strncpy(passphrase, passwd, strlen(passwd)+1);
+    memcpy(passphrase, passwd, strlen(passwd)+1);
   }
 
   if(strnlen(passphrase, 1024) > 0)
@@ -234,12 +234,10 @@ void pcp_exportsecret(char *keyid, int useid, char *outfile, int armor, char *pa
 		     "Enter passphrase to decrypt your secret key", NULL, 1);
 	key = pcpkey_decrypt(ptx, key, passphrase);
 	if(key == NULL) {
-	  memset(passphrase, 0, strlen(passphrase));
-	  free(passphrase);
+	  sfree(passphrase);
 	  goto errexpse1;
 	}
-	memset(passphrase, 0, strlen(passphrase));
-	free(passphrase);
+	sfree(passphrase);
       }
       else {
 	key = pcpkey_decrypt(ptx, key, passwd);
@@ -259,8 +257,7 @@ void pcp_exportsecret(char *keyid, int useid, char *outfile, int armor, char *pa
       pcp_readpass(&passphrase,
                   "Enter passphrase to encrypt the exported secret key", "Repeat passphrase", 1);
       exported_sk = pcp_export_secret(ptx, key, passphrase);
-      memset(passphrase, 0, strlen(passphrase));
-      free(passphrase);
+      sfree(passphrase);
     }
 
     if(exported_sk != NULL) {
@@ -349,8 +346,7 @@ void pcp_exportpublic(char *keyid, char *passwd, char *outfile, int format, int
       pcp_readpass(&passphrase,
 		   "Enter passphrase to decrypt your secret key", NULL, 1);
       sk = pcpkey_decrypt(ptx, sk, passphrase);
-      memset(passphrase, 0, strlen(passphrase));
-      free(passphrase);
+      sfree(passphrase);
     }
     if(sk == NULL) {
       goto errpcpexpu1;
@@ -454,7 +450,7 @@ void pcpedit_key(char *keyid) {
       char *passphrase;
       pcp_readpass(&passphrase, "Enter passphrase to decrypt the key", NULL, 1);
       key = pcpkey_decrypt(ptx, key, passphrase);
-      ucfree(passphrase, strlen(passphrase));
+      sfree(passphrase);
     }
 
     if(key != NULL) {
@@ -509,7 +505,7 @@ void pcpedit_key(char *keyid) {
 
       if(strnlen(passphrase, 1024) > 0) {
 	key = pcpkey_encrypt(ptx, key, passphrase);
-	ucfree(passphrase, strlen(passphrase));
+	sfree(passphrase);
       }
 
       if(key != NULL) {
@@ -616,7 +612,7 @@ int pcp_import (vault_t *vault, FILE *in, char *passwd) {
       pcp_readpass(&passphrase,
 		   "Enter passphrase to decrypt the secret key file", NULL, 1);
       sk = pcp_import_secret(ptx, buf, bufsize, passphrase);
-      ucfree(passphrase, strlen(passphrase));
+      sfree(passphrase);
     }
 
     if(sk == NULL) {
@@ -645,7 +641,7 @@ int pcp_import (vault_t *vault, FILE *in, char *passwd) {
       if(strnlen(passphrase, 1024) > 0) {
 	/* encrypt the key */
 	sk = pcpkey_encrypt(ptx, sk, passphrase);
-	ucfree(passphrase, strlen(passphrase));
+	sfree(passphrase);
       }
       else {
 	/* ask for confirmation if we shall store it in the clear */

src/keymgmt.h

@@ -30,7 +30,6 @@
 #include <wctype.h>
 
 #include "randomart.h"
-#include "mac.h"
 #include "key.h"
 #include "pcp.h"
 #include "vault.h"

src/readpass.c

@@ -107,10 +107,15 @@ retry:
 		fclose(readfrom);
 
 	/* Copy the password out. */
+	char *p = smalloc(strlen(passbuf) + 1);
+	memcpy(p, passbuf, strlen(passbuf) + 1 );
+	*passwd = p;
+	/*
 	if ((*passwd = strdup(passbuf)) == NULL) {
 		fatal(ptx, "Cannot allocate memory\n");
 		goto err1;
 	}
+	*/
 
 	/* Zero any stored passwords. */
 	memset(passbuf, 0, MAXPASSLEN);

src/signature.c

@@ -62,12 +62,12 @@ int pcpsign(char *infile, char *outfile, char *passwd, int z85, int detach) {
 		   "Enter passphrase to decrypt your secret key", NULL, 1);
     }
     else {
-      passphrase = ucmalloc(strlen(passwd)+1);
-      strncpy(passphrase, passwd, strlen(passwd)+1);
+      passphrase = smalloc(strlen(passwd)+1);
+      memcpy(passphrase, passwd, strlen(passwd)+1);
     }
 
     secret = pcpkey_decrypt(ptx, secret, passphrase);
-    ucfree(passphrase, strlen(passwd)+1);
+    sfree(passphrase);
     if(secret == NULL)
       goto errs1;
   }