Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Clear array across all threads

Tags:

java

In Java it is recommended to use char[] for storing passwords or other sensitive information to be able to clear it manually once the data is no longer needed.

How can such an array be cleared across all threads? If I understand it correctly threads might only perform changes in their cache, but not in the shared memory, so the following would not work reliably:

char[] password = ...
...
Arrays.fill(password, '\0');
  • Is this assumption correct or do the threads always write to the shared memory?
  • Is it necessary to use volatile (or other synchronization) to make sure the shared memory is updated?
    • Is a happens-before relationship required for this because the compiler / JVM would otherwise omit memory synchronization due to optimization?
  • Do other threads have to establish a happens-before relationship to clear the array content from their cache, or is this negligible? Possibly because the cache will be used for other more frequently accessed data and the array will be discarded, given that it is not actively used anymore.

Edit: The statement that char[] should be used for passwords was based on Why is char[] preferred over String for passwords?, however after looking at it again, this is also a little bit controversial.

like image 204
Marcono1234 Avatar asked Oct 16 '22 13:10

Marcono1234

1 Answers

Making the array reference volatile won't guarantee volatile access to it's contents. You could use AtomicIntegerArray if you want thread safe shared access. Otherwise you might want to wrap your char array into your custom class with synchronisation around it's methods. Although the latter will be less performant.

Note the using an array of characters instead of a string might not be truly more secure. Dumping the process memory during the time when your char array contains the data is still possible if your attacker has access to your machine, and if he does, you have much more serious concerns than this. Also, garbage collection might move your data elsewhere during it's compaction phase, leaving your password in the freed 'garbage' memory that hasn't been overwritten yet (given you are talking about shared members between threads this is even more likely to happen since your char array would be considered long lived and copied to memory spaces reserved for older generation objects).

like image 143
jbx Avatar answered Oct 30 '22 13:10

jbx
Sign in to Comment

Related questions

Why is javax.json from Glassfish needed as a dependency when using Yasson with JSON-B?
Is it possible to timeout java method?
Why open a non-existing package from a Java module?
Using Lambda and Streams in For each and returning result
Using Java to verify signature created in Golang
Timestamp for this request is outside of the recvWindow
Is there a way to provide default values for env variables in a properties file with apache-commons?
regexp to match simple markdown
What does java.lang.NoSuchMethodError: No virtual method fetchProvidersForEmail(Ljava/lang/String;)Lcom/google/android/gms/tasks/Task; mean?
How is string pool measured in terms of buckets in java
Which resources should be closed?
Graal native-image of swing app: Detected a started Thread in the image heap
How to avoid interstitial ad to reload after closing it
Spring Initializr Basic Project Won't Build
Displaying popup windows while running in the background?
Set ripple effect on Image View
Why runtime exception is unchecked exception?
Why is the finalize() method deprecated in Java 9?
Can't install Eclipse - "Failed to create the Java Virtual Machine" on Mac
Spring MVC 3: Returning XML through @ResponseBody

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!