Skip to content

zeroize: add zeroize_stack function #1331

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
newpavlov merged 6 commits into from
Jan 7, 2026
Merged

zeroize: add zeroize_stack function #1331

Show file tree
Hide file tree
Changes from 3 commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
5930b06
zeroize: add `zeroize_stack` function
newpavlov Jan 7, 2026
9c28ff7
tweak docs
newpavlov Jan 7, 2026
6026357
fmt
newpavlov Jan 7, 2026
b80c324
tweak examples
newpavlov Jan 7, 2026
7099615
tweak docs
newpavlov Jan 7, 2026
ee4fbfb
Update changelog
newpavlov Jan 7, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 3 additions & 0 deletions zeroize/src/lib.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -253,6 +253,9 @@ mod x86;
mod barrier;
pub use barrier::optimization_barrier;

mod stack;
pub use stack::zeroize_stack;

use core::{
marker::{PhantomData, PhantomPinned},
mem::{MaybeUninit, size_of},
Expand Down
50 changes: 50 additions & 0 deletions zeroize/src/stack.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
/// Zeroize `N` bytes of stack space.
///
/// Most algorithm implementations use stack to store temporary data.
/// This temporaries may contain sensitive information (e.g. cryptgraphic keys)
/// and can stay on stack after the computation is finished. If an attacker
/// is able for some reasons to read stack data freely, it may result in
/// leaking of the sensitive data.
///
/// # WARNING
/// This function requires you to estimate how much stack space is used by your
/// sensitive computation. This can be done by tools like [`cargo-call-stack`],
/// but note that stack usage depends on optimization level and compiler flags.
///
/// [`cargo-call-stack`]: https://github.com/japaric/cargo-call-stack
///
/// Additionally, you must annotate your sensitive function with `#[inline(never)]`.
///
/// For example, the following example **DOES NOT** erase stack properly:
/// ```ignore
/// pub fn encrypt_data(cipher: &Cipher, data: &mut [u8]) {
/// cipher.encrypt(data);
/// zeroize::zeroize_stack::<65_536>();
/// }
/// ```
/// The `cipher.encrypt` method may get inlined and `zeroize_stack` will erase
/// stack memory above stack frame reserved by `encrypt_data`. In other words,
/// it will **NOT** erase stack memory used by `cipher.encrypt`.
///
/// You should wrap your computation in the following way:
/// ```ignore
/// #[inline(never)]
/// fn encrypt_data_inner(cipher: &Cipher, data: &mut [u8]) {
/// cipher.encrypt(data);
/// }
///
/// pub fn encrypt_data(cipher: &Cipher, data: &mut [u8]) {
/// cipher.encrypt(data);
/// zeroize::zeroize_stack::<65_536>();
/// }
/// ```
/// Finally, note that `#[inline(never)]` is just a hint and may be ignored
/// by the compiler. It works properly in practice, but such stack zeroization
/// should be considered as "best effort" and in cases where it's not enough
/// you should inspect the generated binary to verify that you got a desired
/// codegen.
#[inline(never)]
pub fn zeroize_stack<const N: usize>() {
let buf = [0u8; N];
crate::optimization_barrier(&buf);
}