| commit | 87e6e6cc58e55eed9d4de2a30a36c4e5a02845d7 | [log] [tgz] |
|---|---|---|
| author | Pierre-Clément Tosi <[email protected]> | Tue Nov 15 03:07:52 2022 +0000 |
| committer | Automerger Merge Worker <[email protected]> | Tue Nov 15 03:07:52 2022 +0000 |
| tree | 09a76155cb53a2f088b6a9d211023eb5b95fd543 | |
| parent | 39d5314d84d71bff70aa7595ef2bf1a12b8b5532 [diff] | |
| parent | 34a3955d942937139aeb0adf28b2b4c2fca2c7d5 [diff] |
Add a no_std variant of libzeroize am: 34a3955d94 Original change: https://android-review.googlesource.com/c/platform/external/rust/crates/zeroize/+/2280690 Change-Id: I60c988fa15b2772d7857fe87ea14e9fdc05494d4 Signed-off-by: Automerger Merge Worker <[email protected]>
Securely zero memory (a.k.a. zeroize) while avoiding compiler optimizations.
This crate implements a portable approach to securely zeroing memory using techniques which guarantee they won't be “optimized away” by the compiler.
The Zeroize trait is the crate's primary API.
Zeroing memory securely is hard - compilers optimize for performance, and in doing so they love to “optimize away” unnecessary zeroing calls. There are many documented “tricks” to attempt to avoid these optimizations and ensure that a zeroing routine is performed reliably.
This crate isn‘t about tricks: it uses core::ptr::write_volatile and core::sync::atomic memory fences to provide easy-to-use, portable zeroing behavior which works on all of Rust’s core number types and slices thereof, implemented in pure Rust with no usage of FFI or assembly.
#![no_std] i.e. embedded-friendly!Rust 1.51 or newer.
In the future, we reserve the right to change MSRV (i.e. MSRV is out-of-scope for this crate's SemVer guarantees), however when we do it will be accompanied by a minor version bump.
Licensed under either of:
at your option.
Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.