Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Okay, fair point, sort of. Rust does not have a built-in feature to zero data. Rust does automatically drop references to data on the heap. Zeroing data is fairly trivial, whereas in go, the issue is non-trivial (afaiu).

  use std::ptr;
  
  struct SecretData {
      data: Vec<u8>,
  }
  
  impl Drop for SecretData {
      fn drop(&mut self) {
          // Zero out the data
          unsafe {
              ptr::write_bytes(self.data.as_mut_ptr(), 0, self.data.len());
          }
      }
  }




Zeroing memory is trickier than that, if you want to do it in Rust you should use https://crates.io/crates/zeroize

reply


He was pretty close tbf - you just need to use `write_volatile` instead of `write_bytes`.

reply


Zeroing data does not protect from sidechannel exfiltration. You really need to mfence it also. The zeroize crate also doesn't help there, it only does protect from wrong compiler dead block elimination.

reply




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: