Don't retain references to passed byte slices (#40)

2020-04-08 11:11:16 +02:00 · 2020-04-08 11:11:16 +02:00 · 10a9a0f557
commit 10a9a0f557
parent 9caf737bc7
4 changed files with 17 additions and 9 deletions
--- a/crypto/gopenpgp.go
+++ b/crypto/gopenpgp.go
@ -11,3 +11,11 @@ type GopenPGP struct {
 }
 var pgp = GopenPGP{}
 // clone returns a clone of the byte slice. Internal function used to make sure
 // we don't retain a reference to external data.
 func clone(input []byte) []byte {
 	data := make([]byte, len(input))
 	copy(data, input)
 	return data
 }
--- a/crypto/key.go
+++ b/crypto/key.go
@ -52,7 +52,7 @@ func NewKeyFromReader(r io.Reader) (key *Key, err error) {
 // NewKey creates a new key from the first key in the unarmored binary data
 func NewKey(binKeys []byte) (key *Key, err error) {
-	return NewKeyFromReader(bytes.NewReader(binKeys))
+	return NewKeyFromReader(bytes.NewReader(clone(binKeys)))
 }
 // NewKeyFromArmored creates a new key from the first key in an armored
--- a/crypto/message.go
+++ b/crypto/message.go
@ -61,7 +61,7 @@ type ClearTextMessage struct {
 // signature, or verification from the unencrypted binary data.
 func NewPlainMessage(data []byte) *PlainMessage {
 	return &PlainMessage{
-		Data:     data,
+		Data:     clone(data),
 		TextType: false,
 	}
 }
@ -78,7 +78,7 @@ func NewPlainMessageFromString(text string) *PlainMessage {
 // NewPGPMessage generates a new PGPMessage from the unarmored binary data.
 func NewPGPMessage(data []byte) *PGPMessage {
 	return &PGPMessage{
-		Data: data,
+		Data: clone(data),
 	}
 }
@ -103,8 +103,8 @@ func NewPGPMessageFromArmored(armored string) (*PGPMessage, error) {
 // datapacket, and encryption algorithm.
 func NewPGPSplitMessage(keyPacket []byte, dataPacket []byte) *PGPSplitMessage {
 	return &PGPSplitMessage{
-		KeyPacket:  keyPacket,
+		KeyPacket:  clone(keyPacket),
-		DataPacket: dataPacket,
+		DataPacket: clone(dataPacket),
 	}
 }
@ -122,7 +122,7 @@ func NewPGPSplitMessageFromArmored(encrypted string) (*PGPSplitMessage, error) {
 // NewPGPSignature generates a new PGPSignature from the unarmored binary data.
 func NewPGPSignature(data []byte) *PGPSignature {
 	return &PGPSignature{
-		Data: data,
+		Data: clone(data),
 	}
 }
@ -146,8 +146,8 @@ func NewPGPSignatureFromArmored(armored string) (*PGPSignature, error) {
 // NewClearTextMessage generates a new ClearTextMessage from data and signature
 func NewClearTextMessage(data []byte, signature []byte) *ClearTextMessage {
 	return &ClearTextMessage{
-		Data:      data,
+		Data:      clone(data),
-		Signature: signature,
+		Signature: clone(signature),
 	}
 }
--- a/crypto/sessionkey.go
+++ b/crypto/sessionkey.go
@ -80,7 +80,7 @@ func GenerateSessionKey() (*SessionKey, error) {
 func NewSessionKeyFromToken(token []byte, algo string) *SessionKey {
 	return &SessionKey{
-		Key:  token,
+		Key:  clone(token),
 		Algo: algo,
 	}
 }