securejson: decrypt should not modify src

When decrypting a source securejson byte array, should not modify the source and now passes back a new dest byte array.

securejson: decrypt should not modify src
When decrypting a source securejson byte array, should not modify the source and now passes back a new dest byte array.
b1506a2b · Daniel Lee · e13575ea · b1506a2b
Commit b1506a2b authored Sep 08, 2017 by Daniel Lee
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 2 deletions

pkg/util/encryption.go
+3 -2

No files found.
--- a/pkg/util/encryption.go
+++ b/pkg/util/encryption.go
@@ -27,12 +27,13 @@ func Decrypt(payload []byte, secret string) ([]byte, error) {
 	}
 	iv := payload[saltLength : saltLength+aes.BlockSize]
 	payload = payload[saltLength+aes.BlockSize:]
+	payloadDst := make([]byte, len(payload))

 	stream := cipher.NewCFBDecrypter(block, iv)

 	// XORKeyStream can work in-place if the two arguments are the same.
-	stream.XORKeyStream(payload, payload)
-	return payload, nil
+	stream.XORKeyStream(payloadDst, payload)
+	return payloadDst, nil
 }

 func Encrypt(payload []byte, secret string) ([]byte, error) {