chapter264, [SORA][SORA Network] SorachanCoin: Improvement security of SecureString.

Hello friends!
We will soon complete the verification of new features. (e.g. getblockqhash)
We would like to go with the release …..
But before that, we found one problem that have been from before SORA released.

In the process of the SecureString, we found a problem that the passphrase remains in “plain text” in the object before passing.
Therefore, we have improved the SecureString so that the “plain text” passphrase is cleaned by “::OpenSSL_cleanse” in the functor method.

allocator.h (class SecureString)
https://github.com/FromHDDtoSSD/SorachanCoin-qt/blob/master/src/allocators.h

eg usage: SecureString functor.
rpcwallet.cpp
https://github.com/FromHDDtoSSD/SorachanCoin-qt/blob/master/src/rpcwallet.cpp

eg usage: SecureString functor QString.
qt/askpassphrasedialog.cpp
https://github.com/FromHDDtoSSD/SorachanCoin-qt/blob/master/src/qt/askpassphrasedialog.cpp

コメントを残す

メールアドレスが公開されることはありません。 * が付いている欄は必須項目です