secure_string

Struct SecureVec

Source 
pub struct SecureVec<T>
where
    T: Copy + Zeroize,
{ /* private fields */ }
Expand description

A data type suitable for storing sensitive information such as passwords and private keys in memory, that implements:

  • Automatic zeroing in Drop
  • Constant time comparison in PartialEq (does not short circuit on the first different character; but terminates instantly if strings have different length)
  • Outputting ***SECRET*** to prevent leaking secrets into logs in fmt::Debug and fmt::Display
  • Automatic mlock to protect against leaking into swap (any unix)
  • Automatic madvise(MADV_NOCORE/MADV_DONTDUMP) to protect against leaking into core dumps (FreeBSD, DragonflyBSD, Linux)

Comparisons using the PartialEq implementation are undefined behavior (and most likely wrong) if T has any padding bytes.

Be careful with SecureBytes::from: if you have a borrowed string, it will be copied. Use SecureBytes::new if you have a Vec<u8>.

Implementations§

Source§

impl<T> SecureVec<T>
where T: Copy + Zeroize,

Source

pub fn new(cont: Vec<T>) -> Self

Source

pub fn unsecure(&self) -> &[T]

Borrow the contents of the string.

Source

pub fn unsecure_mut(&mut self) -> &mut [T]

Mutably borrow the contents of the string.

Source

pub fn resize(&mut self, new_len: usize, value: T)

Resizes the SecureVec in-place so that len is equal to new_len.

If new_len is smaller the inner vector is truncated. If new_len is larger the inner vector will grow, placing value in all new cells.

This ensures that the new memory region is secured if reallocation occurs.

Similar to Vec::resize

Source

pub fn zero_out(&mut self)

Overwrite the string with zeros. This is automatically called in the destructor.

This also sets the length to 0.

Trait Implementations§

Source§

impl<T> Borrow<[T]> for SecureVec<T>
where T: Copy + Zeroize,

Source§

fn borrow(&self) -> &[T]

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<[T]> for SecureVec<T>
where T: Copy + Zeroize,

Source§

fn borrow_mut(&mut self) -> &mut [T]

Mutably borrows from an owned value. Read more
Source§

impl<T: Copy + Zeroize> Clone for SecureVec<T>

Source§

fn clone(&self) -> Self

Returns a copy of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl<T> Debug for SecureVec<T>
where T: Copy + Zeroize,

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl<T> Display for SecureVec<T>
where T: Copy + Zeroize,

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl<T> Drop for SecureVec<T>
where T: Copy + Zeroize,

Source§

fn drop(&mut self)

Executes the destructor for this type. Read more
Source§

impl<T, U> From<U> for SecureVec<T>
where U: Into<Vec<T>>, T: Copy + Zeroize,

Source§

fn from(s: U) -> SecureVec<T>

Converts to this type from the input type.
Source§

impl FromStr for SecureVec<u8>

Source§

type Err = Infallible

The associated error which can be returned from parsing.
Source§

fn from_str(s: &str) -> Result<Self, Self::Err>

Parses a string s to return a value of this type. Read more
Source§

impl<T> Hash for SecureVec<T>
where T: Copy + Zeroize + Hash,

Source§

fn hash<__H: Hasher>(&self, state: &mut __H)

Feeds this value into the given Hasher. Read more
1.3.0 · Source§

fn hash_slice<H>(data: &[Self], state: &mut H)
where H: Hasher, Self: Sized,

Feeds a slice of this type into the given Hasher. Read more
Source§

impl<T, U> Index<U> for SecureVec<T>
where T: Copy + Zeroize, Vec<T>: Index<U>,

Source§

type Output = <Vec<T> as Index<U>>::Output

The returned type after indexing.
Source§

fn index(&self, index: U) -> &Self::Output

Performs the indexing (container[index]) operation. Read more
Source§

impl<T> Ord for SecureVec<T>
where T: Copy + Zeroize + Ord,

Source§

fn cmp(&self, other: &SecureVec<T>) -> Ordering

This method returns an Ordering between self and other. Read more
1.21.0 · Source§

fn max(self, other: Self) -> Self
where Self: Sized,

Compares and returns the maximum of two values. Read more
1.21.0 · Source§

fn min(self, other: Self) -> Self
where Self: Sized,

Compares and returns the minimum of two values. Read more
1.50.0 · Source§

fn clamp(self, min: Self, max: Self) -> Self
where Self: Sized,

Restrict a value to a certain interval. Read more
Source§

impl<T> PartialEq for SecureVec<T>
where T: Copy + Zeroize + PartialEq,

Source§

fn eq(&self, other: &SecureVec<T>) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl<T> PartialOrd for SecureVec<T>
where T: Copy + Zeroize + PartialOrd,

Source§

fn partial_cmp(&self, other: &SecureVec<T>) -> Option<Ordering>

This method returns an ordering between self and other values if one exists. Read more
1.0.0 · Source§

fn lt(&self, other: &Rhs) -> bool

Tests less than (for self and other) and is used by the < operator. Read more
1.0.0 · Source§

fn le(&self, other: &Rhs) -> bool

Tests less than or equal to (for self and other) and is used by the <= operator. Read more
1.0.0 · Source§

fn gt(&self, other: &Rhs) -> bool

Tests greater than (for self and other) and is used by the > operator. Read more
1.0.0 · Source§

fn ge(&self, other: &Rhs) -> bool

Tests greater than or equal to (for self and other) and is used by the >= operator. Read more
Source§

impl<T> Eq for SecureVec<T>
where T: Copy + Zeroize + Eq,

Source§

impl<T> StructuralPartialEq for SecureVec<T>
where T: Copy + Zeroize,

Auto Trait Implementations§

§

impl<T> Freeze for SecureVec<T>

§

impl<T> RefUnwindSafe for SecureVec<T>
where T: RefUnwindSafe,

§

impl<T> Send for SecureVec<T>
where T: Send,

§

impl<T> Sync for SecureVec<T>
where T: Sync,

§

impl<T> Unpin for SecureVec<T>
where T: Unpin,

§

impl<T> UnwindSafe for SecureVec<T>
where T: UnwindSafe,

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T> ToString for T
where T: Display + ?Sized,

Source§

fn to_string(&self) -> String

Converts the given value to a String. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.