Remove useless sodium_memzero, add one that makes sense

jedisct1 · jedisct1 · commit 13d2c97a722a · 2026-03-08T15:26:40.000+01:00
diff --git a/src/libsodium/crypto_box/crypto_box_seal.c b/src/libsodium/crypto_box/crypto_box_seal.c
@@ -37,8 +37,6 @@ crypto_box_seal(unsigned char *c, const unsigned char *m,
                           nonce, pk, esk);
     memcpy(c, epk, crypto_box_PUBLICKEYBYTES);
     sodium_memzero(esk, sizeof esk);
-    sodium_memzero(epk, sizeof epk);
-    sodium_memzero(nonce, sizeof nonce);
 
     return ret;
 }
diff --git a/src/libsodium/crypto_box/curve25519xchacha20poly1305/box_curve25519xchacha20poly1305.c b/src/libsodium/crypto_box/curve25519xchacha20poly1305/box_curve25519xchacha20poly1305.c
@@ -48,7 +48,10 @@ crypto_box_curve25519xchacha20poly1305_beforenm(unsigned char *k,
     if (crypto_scalarmult_curve25519(s, sk, pk) != 0) {
         return -1;
     }
-    return crypto_core_hchacha20(k, zero, s, NULL);
+    crypto_core_hchacha20(k, zero, s, NULL);
+    sodium_memzero(s, sizeof s);
+
+    return 0;
 }
 
 int
diff --git a/src/libsodium/crypto_box/curve25519xchacha20poly1305/box_seal_curve25519xchacha20poly1305.c b/src/libsodium/crypto_box/curve25519xchacha20poly1305/box_seal_curve25519xchacha20poly1305.c
@@ -44,8 +44,6 @@ crypto_box_curve25519xchacha20poly1305_seal(unsigned char *c, const unsigned cha
          nonce, pk, esk);
     memcpy(c, epk, crypto_box_curve25519xchacha20poly1305_PUBLICKEYBYTES);
     sodium_memzero(esk, sizeof esk);
-    sodium_memzero(epk, sizeof epk);
-    sodium_memzero(nonce, sizeof nonce);
 
     return ret;
 }
diff --git a/src/libsodium/crypto_box/curve25519xsalsa20poly1305/box_curve25519xsalsa20poly1305.c b/src/libsodium/crypto_box/curve25519xsalsa20poly1305/box_curve25519xsalsa20poly1305.c
@@ -42,7 +42,10 @@ crypto_box_curve25519xsalsa20poly1305_beforenm(unsigned char *k,
     if (crypto_scalarmult_curve25519(s, sk, pk) != 0) {
         return -1;
     }
-    return crypto_core_hsalsa20(k, zero, s, NULL);
+    crypto_core_hsalsa20(k, zero, s, NULL);
+    sodium_memzero(s, sizeof s);
+
+    return 0;
 }
 
 int

Original file line number	Diff line number	Diff line change
`@@ -37,8 +37,6 @@ crypto_box_seal(unsigned char c, const unsigned char m,`
`37`	`37`	`nonce, pk, esk);`
`38`	`38`	`memcpy(c, epk, crypto_box_PUBLICKEYBYTES);`
`39`	`39`	`sodium_memzero(esk, sizeof esk);`
`40`		`- sodium_memzero(epk, sizeof epk);`
`41`		`- sodium_memzero(nonce, sizeof nonce);`
`42`	`40`
`43`	`41`	`return ret;`
`44`	`42`	`}`
Original file line number	Diff line number	Diff line change
`@@ -48,7 +48,10 @@ crypto_box_curve25519xchacha20poly1305_beforenm(unsigned char *k,`
`48`	`48`	`if (crypto_scalarmult_curve25519(s, sk, pk) != 0) {`
`49`	`49`	`return -1;`
`50`	`50`	`}`
`51`		`- return crypto_core_hchacha20(k, zero, s, NULL);`
	`51`	`+ crypto_core_hchacha20(k, zero, s, NULL);`
	`52`	`+ sodium_memzero(s, sizeof s);`
	`53`	`+`
	`54`	`+ return 0;`
`52`	`55`	`}`
`53`	`56`
`54`	`57`	`int`
Original file line number	Diff line number	Diff line change
`@@ -44,8 +44,6 @@ crypto_box_curve25519xchacha20poly1305_seal(unsigned char *c, const unsigned cha`
`44`	`44`	`nonce, pk, esk);`
`45`	`45`	`memcpy(c, epk, crypto_box_curve25519xchacha20poly1305_PUBLICKEYBYTES);`
`46`	`46`	`sodium_memzero(esk, sizeof esk);`
`47`		`- sodium_memzero(epk, sizeof epk);`
`48`		`- sodium_memzero(nonce, sizeof nonce);`
`49`	`47`
`50`	`48`	`return ret;`
`51`	`49`	`}`
Original file line number	Diff line number	Diff line change
`@@ -42,7 +42,10 @@ crypto_box_curve25519xsalsa20poly1305_beforenm(unsigned char *k,`
`42`	`42`	`if (crypto_scalarmult_curve25519(s, sk, pk) != 0) {`
`43`	`43`	`return -1;`
`44`	`44`	`}`
`45`		`- return crypto_core_hsalsa20(k, zero, s, NULL);`
	`45`	`+ crypto_core_hsalsa20(k, zero, s, NULL);`
	`46`	`+ sodium_memzero(s, sizeof s);`
	`47`	`+`
	`48`	`+ return 0;`
`46`	`49`	`}`
`47`	`50`
`48`	`51`	`int`