summaryrefslogtreecommitdiff
path: root/src/sbearssl/sbearssl_skey_wipe.c
diff options
context:
space:
mode:
Diffstat (limited to 'src/sbearssl/sbearssl_skey_wipe.c')
-rw-r--r--src/sbearssl/sbearssl_skey_wipe.c26
1 files changed, 26 insertions, 0 deletions
diff --git a/src/sbearssl/sbearssl_skey_wipe.c b/src/sbearssl/sbearssl_skey_wipe.c
new file mode 100644
index 0000000..8fbcd36
--- /dev/null
+++ b/src/sbearssl/sbearssl_skey_wipe.c
@@ -0,0 +1,26 @@
+/* ISC license. */
+
+#include <bearssl.h>
+
+#include <skalibs/bytestr.h>
+
+#include <s6-networking/sbearssl.h>
+
+void sbearssl_skey_wipe (sbearssl_skey *key, char *s)
+{
+ switch (key->type)
+ {
+ case BR_KEYTYPE_RSA :
+ byte_zzero(s + key->data.rsa.p, key->data.rsa.plen) ;
+ byte_zzero(s + key->data.rsa.q, key->data.rsa.qlen) ;
+ byte_zzero(s + key->data.rsa.dp, key->data.rsa.dplen) ;
+ byte_zzero(s + key->data.rsa.dq, key->data.rsa.dqlen) ;
+ byte_zzero(s + key->data.rsa.iq, key->data.rsa.iqlen) ;
+ break ;
+ case BR_KEYTYPE_EC :
+ byte_zzero(s + key->data.ec.x, key->data.ec.xlen) ;
+ break ;
+ default : break ;
+ }
+ byte_zzero((char *)key, sizeof(sbearssl_skey)) ;
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-10 06:22:05 +0000