Add AutoCloseable to MutableBytes interface

patrickfav · patrickfav · commit 737044aa895f · 2019-01-12T20:38:54.000+01:00
diff --git a/CHANGELOG b/CHANGELOG
@@ -7,6 +7,7 @@
 * add `encodeBase64()` supporting padding-less encoding
 * add `toIntArray()` converter #28
 * add `toLongArray()` converter #29
+* add `AutoCloseable` to MutableBytes interface #31
 
 ### Breaking
 
diff --git a/README.md b/README.md
@@ -580,6 +580,18 @@ Bytes b = Bytes.from(array).mutable().copy();
 assertTrue(b.isMutable());
 ```
 
+##### AutoClosable for try-with-resources
+
+In security-relevant environments it is best practice to wipe the memory of secret data, such as
+secret keys. This can be used with Java 7 feature try-with-resource like this:
+
+```java
+try (MutableBytes b = Bytes.wrap(aesBytes).mutable()) {
+    SecretKey s = new SecretKeySpec(b.array(), "AES");
+    ...
+}
+```
+
 #### Readonly Bytes
 
 On the other hand, if you want a export a instance with limited access,
diff --git a/src/main/java/at/favre/lib/bytes/MutableBytes.java b/src/main/java/at/favre/lib/bytes/MutableBytes.java
@@ -32,7 +32,7 @@
  * Adds additional mutator, which may change the internal array in-place, like {@link #wipe()}
  */
 @SuppressWarnings("WeakerAccess")
-public final class MutableBytes extends Bytes {
+public final class MutableBytes extends Bytes implements AutoCloseable {
 
     MutableBytes(byte[] byteArray, ByteOrder byteOrder) {
         super(byteArray, byteOrder, new Factory());
@@ -147,6 +147,11 @@ public boolean equals(Object o) {
         return super.equals(o);
     }
 
+    @Override
+    public void close() {
+        secureWipe();
+    }
+
     /**
      * Factory creating mutable byte types
      */
diff --git a/src/test/java/at/favre/lib/bytes/MutableBytesTest.java b/src/test/java/at/favre/lib/bytes/MutableBytesTest.java
@@ -23,6 +23,8 @@
 
 import org.junit.Test;
 
+import javax.crypto.SecretKey;
+import javax.crypto.spec.SecretKeySpec;
 import java.security.SecureRandom;
 import java.util.Arrays;
 
@@ -167,4 +169,18 @@ public void testTransformerShouldBeMutable() {
         assertTrue(b.append(3).isMutable());
         assertTrue(b.hashSha256().isMutable());
     }
+
+    @Test
+    public void testAutoCloseable() {
+        MutableBytes leak;
+
+        try (MutableBytes b = Bytes.wrap(new byte[16]).mutable()) {
+            assertArrayEquals(new byte[16], b.array());
+            SecretKey s = new SecretKeySpec(b.array(), "AES");
+            leak = b;
+        }
+
+        assertArrayNotEquals(new byte[16], leak.array());
+
+    }
 }
