turnkey/openpgp-card
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Add notes about using Protected memory for private key material.

Browse source
This commit is contained in:
Heiko Schaefer 2021-10-05 17:38:08 +02:00
parent ddf62dbfe2
commit a4c04de09c
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
openpgp-card/src/crypto_data.rs
View file

@ -85,6 +85,9 @@ pub enum PrivateKeyMaterial {
/// RSA-specific container for private key material to upload to an OpenPGP /// RSA-specific container for private key material to upload to an OpenPGP
/// card. /// card.
pub trait RSAKey { pub trait RSAKey {
// FIXME: use a mechanism like sequoia_openpgp::crypto::mem::Protected
// for private key material?
fn get_e(&self) -> &[u8]; fn get_e(&self) -> &[u8];
fn get_p(&self) -> &[u8]; fn get_p(&self) -> &[u8];
fn get_q(&self) -> &[u8]; fn get_q(&self) -> &[u8];
@ -99,6 +102,9 @@ pub trait RSAKey {
/// ECC-specific container for private key material to upload to an OpenPGP /// ECC-specific container for private key material to upload to an OpenPGP
/// card. /// card.
pub trait EccKey { pub trait EccKey {
// FIXME: use a mechanism like sequoia_openpgp::crypto::mem::Protected
// for private key material?
fn get_oid(&self) -> &[u8]; fn get_oid(&self) -> &[u8];
fn get_private(&self) -> Vec<u8>; fn get_private(&self) -> Vec<u8>;
fn get_public(&self) -> Vec<u8>; fn get_public(&self) -> Vec<u8>;