8172525: Improve key keying case

Reviewed-by: mullan, valeriep, rhalade, ahgross
2017-04-28 10:17:46 -04:00 · 2017-04-28 10:17:46 -04:00 · bb2e7a3311
commit bb2e7a3311
parent 2ad7c43b76
4 changed files with 30 additions and 5 deletions
--- a/src/java.base/share/classes/com/sun/crypto/provider/DESKey.java
+++ b/src/java.base/share/classes/com/sun/crypto/provider/DESKey.java
@ -25,6 +25,7 @@
 package com.sun.crypto.provider;
 import java.lang.ref.Reference;
 import java.security.MessageDigest;
 import java.security.KeyRep;
 import java.security.InvalidKeyException;
@ -86,7 +87,12 @@ final class DESKey implements SecretKey {
    public byte[] getEncoded() {
        // Return a copy of the key, rather than a reference,
        // so that the key data cannot be modified from outside
-        return this.key.clone();
+
        // The key is zeroized by finalize()
        // The reachability fence ensures finalize() isn't called early
        byte[] result = key.clone();
        Reference.reachabilityFence(this);
        return result;
    }
    public String getAlgorithm() {
--- a/src/java.base/share/classes/com/sun/crypto/provider/DESedeKey.java
+++ b/src/java.base/share/classes/com/sun/crypto/provider/DESedeKey.java
@ -25,6 +25,7 @@
 package com.sun.crypto.provider;
 import java.lang.ref.Reference;
 import java.security.MessageDigest;
 import java.security.KeyRep;
 import java.security.InvalidKeyException;
@ -86,7 +87,11 @@ final class DESedeKey implements SecretKey {
    }
    public byte[] getEncoded() {
-        return this.key.clone();
+        // The key is zeroized by finalize()
        // The reachability fence ensures finalize() isn't called early
        byte[] result = key.clone();
        Reference.reachabilityFence(this);
        return result;
    }
    public String getAlgorithm() {
--- a/src/java.base/share/classes/com/sun/crypto/provider/PBEKey.java
+++ b/src/java.base/share/classes/com/sun/crypto/provider/PBEKey.java
@ -25,6 +25,7 @@
 package com.sun.crypto.provider;
 import java.lang.ref.Reference;
 import java.security.MessageDigest;
 import java.security.KeyRep;
 import java.security.spec.InvalidKeySpecException;
@ -80,7 +81,11 @@ final class PBEKey implements SecretKey {
    }
    public byte[] getEncoded() {
-        return this.key.clone();
+        // The key is zeroized by finalize()
        // The reachability fence ensures finalize() isn't called early
        byte[] result = key.clone();
        Reference.reachabilityFence(this);
        return result;
    }
    public String getAlgorithm() {
--- a/src/java.base/share/classes/com/sun/crypto/provider/PBKDF2KeyImpl.java
+++ b/src/java.base/share/classes/com/sun/crypto/provider/PBKDF2KeyImpl.java
@ -26,6 +26,7 @@
 package com.sun.crypto.provider;
 import java.io.ObjectStreamException;
 import java.lang.ref.Reference;
 import java.nio.ByteBuffer;
 import java.nio.CharBuffer;
 import java.nio.charset.Charset;
@ -208,7 +209,11 @@ final class PBKDF2KeyImpl implements javax.crypto.interfaces.PBEKey {
    }
    public byte[] getEncoded() {
-        return key.clone();
+        // The key is zeroized by finalize()
        // The reachability fence ensures finalize() isn't called early
        byte[] result = key.clone();
        Reference.reachabilityFence(this);
        return result;
    }
    public String getAlgorithm() {
@ -220,7 +225,11 @@ final class PBKDF2KeyImpl implements javax.crypto.interfaces.PBEKey {
    }
    public char[] getPassword() {
-        return passwd.clone();
+        // The password is zeroized by finalize()
        // The reachability fence ensures finalize() isn't called early
        char[] result = passwd.clone();
        Reference.reachabilityFence(this);
        return result;
    }
    public byte[] getSalt() {