summaryrefslogtreecommitdiff
path: root/src/sbearssl/sbearssl_skey_wipe.c
diff options
context:
space:
mode:
Diffstat (limited to 'src/sbearssl/sbearssl_skey_wipe.c')
-rw-r--r--src/sbearssl/sbearssl_skey_wipe.c26
1 files changed, 26 insertions, 0 deletions
diff --git a/src/sbearssl/sbearssl_skey_wipe.c b/src/sbearssl/sbearssl_skey_wipe.c
new file mode 100644
index 0000000..208f89f
--- /dev/null
+++ b/src/sbearssl/sbearssl_skey_wipe.c
@@ -0,0 +1,26 @@
+/* ISC license. */
+
+#include <bearssl.h>
+
+#include <skalibs/bytestr.h>
+
+#include <s6-networking/sbearssl.h>
+
+void sbearssl_skey_wipe (sbearssl_skey *key, char *s)
+{
+ switch (key->type)
+ {
+ case BR_KEYTYPE_RSA :
+ byte_zzero(s + key->rsa.p, key->rsa.plen) ;
+ byte_zzero(s + key->rsa.q, key->rsa.qlen) ;
+ byte_zzero(s + key->rsa.dp, key->rsa.dplen) ;
+ byte_zzero(s + key->rsa.dq, key->rsa.dqlen) ;
+ byte_zzero(s + key->rsa.iq, key->rsa.iqlen) ;
+ break ;
+ case BR_KEYTYPE_EC :
+ byte_zzero(s + key->ec.x, key->ec.xlen) ;
+ break ;
+ default : break ;
+ }
+ byte_zzero(key, sizeof(sbearssl_skey)) ;
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-19 22:06:43 +0000