more clearing private bits

2024-11-02 18:26:43 +00:00 · 2020-05-19 16:41:37 +02:00 · 2020-05-19 16:41:37 +02:00 · 06de1d7e14
commit 06de1d7e14
parent d2bd335e76
6 changed files with 20 additions and 2 deletions
--- a/src/main/java/com/sparrowwallet/drongo/Utils.java
+++ b/src/main/java/com/sparrowwallet/drongo/Utils.java
@ -111,6 +111,7 @@ public class Utils {
        int srcPos = isFirstByteOnlyForSign ? 1 : 0;
        int destPos = numBytes - length;
        System.arraycopy(src, srcPos, dest, destPos, length);
+        Arrays.fill(src, (byte)0);
        return dest;
    }

--- a/src/main/java/com/sparrowwallet/drongo/crypto/ECIESKeyCrypter.java
+++ b/src/main/java/com/sparrowwallet/drongo/crypto/ECIESKeyCrypter.java
@ -45,7 +45,7 @@ public class ECIESKeyCrypter implements AsymmetricKeyCrypter {
        byte[] hmacInput = Arrays.copyOfRange(decoded, 0, decoded.length - 32);

        if(!Arrays.equals(mac, hmac256(key_m, hmacInput))) {
-            throw new InvalidPasswordException();
+            throw new InvalidPasswordException("The password was invalid");
        }

        return aesKeyCrypter.decrypt(new EncryptedData(iv, ciphertext, null, null), new Key(key_e, null, null));
--- a/src/main/java/com/sparrowwallet/drongo/crypto/ECKey.java
+++ b/src/main/java/com/sparrowwallet/drongo/crypto/ECKey.java
@ -699,6 +699,12 @@ public class ECKey implements EncryptableItem {
        return Utils.bigIntegerToBytes(getPrivKey(), 32);
    }

+    public void clear() {
+        for(int i = 0; i < priv.bitLength(); i++) {
+            priv.clearBit(i);
+        }
+    }
+
    /**
     * Returns the creation time of this key or zero if the key was deserialized from a version that did not store
     * that data.
--- a/src/main/java/com/sparrowwallet/drongo/crypto/Key.java
+++ b/src/main/java/com/sparrowwallet/drongo/crypto/Key.java
@ -27,6 +27,5 @@ public class Key {

    public void clear() {
        Arrays.fill(keyBytes, (byte)0);
-        Arrays.fill(salt, (byte)0);
    }
 }
--- a/src/main/java/com/sparrowwallet/drongo/wallet/Keystore.java
+++ b/src/main/java/com/sparrowwallet/drongo/wallet/Keystore.java
@ -202,4 +202,10 @@ public class Keystore {
            seed = seed.decrypt(key);
        }
    }
+
+    public void clearPrivate() {
+        if(hasSeed()) {
+            seed.clear();
+        }
+    }
 }
--- a/src/main/java/com/sparrowwallet/drongo/wallet/Wallet.java
+++ b/src/main/java/com/sparrowwallet/drongo/wallet/Wallet.java
@ -198,4 +198,10 @@ public class Wallet {
            keystore.decrypt(key);
        }
    }
+
+    public void clearPrivate() {
+        for(Keystore keystore : keystores) {
+            keystore.clearPrivate();
+        }
+    }
 }