diff options
author | Justus Winter <justus@sequoia-pgp.org> | 2023-09-22 16:18:43 +0200 |
---|---|---|
committer | Justus Winter <justus@sequoia-pgp.org> | 2023-09-22 16:23:59 +0200 |
commit | 63d28ccf695ccb438c03b505876c5dcf13749133 (patch) | |
tree | 8c490b5cb6e3ba4c58da43bccefe806565931c70 | |
parent | 2639423fa06dfa9a3d13a5962c3cb8db68a412fd (diff) |
openpgp: Enable the zeroize feature in the RustCrypto crates.
- Unfortunately, in all of the cipher crates other than the aes
crate this doesn't do anything besides enabling cipher/zeroize.
-rw-r--r-- | Cargo.lock | 2 | ||||
-rw-r--r-- | openpgp/Cargo.toml | 16 |
2 files changed, 10 insertions, 8 deletions
@@ -27,6 +27,7 @@ dependencies = [ "cfg-if", "cipher", "cpufeatures", + "zeroize", ] [[package]] @@ -392,6 +393,7 @@ checksum = "773f3b9af64447d2ce9850330c473515014aa235e6a783b02db81ff39e4a3dad" dependencies = [ "crypto-common", "inout", + "zeroize", ] [[package]] diff --git a/openpgp/Cargo.toml b/openpgp/Cargo.toml index baf72a51..71a52df2 100644 --- a/openpgp/Cargo.toml +++ b/openpgp/Cargo.toml @@ -59,15 +59,15 @@ openssl-sys = { version = "0.9.90", optional = true } botan = { version = "0.10.6", optional = true } # RustCrypto crates. -aes = { version = "0.8", optional = true } +aes = { version = "0.8", optional = true, features = ["zeroize"] } aes-gcm = { version = "0.10", optional = true, features = ["std"] } block-padding = { version = "0.3", optional = true } -blowfish = { version = "0.9", optional = true } -camellia = { version = "0.1", optional = true } -cast5 = { version = "0.11", optional = true } -cipher = { version = "0.4", optional = true, features = ["std"] } +blowfish = { version = "0.9", optional = true, features = ["zeroize"] } +camellia = { version = "0.1", optional = true, features = ["zeroize"] } +cast5 = { version = "0.11", optional = true, features = ["zeroize"] } +cipher = { version = "0.4", optional = true, features = ["std", "zeroize"] } cfb-mode = { version = "0.8", optional = true } -des = { version = "0.8", optional = true } +des = { version = "0.8", optional = true, features = ["zeroize"] } digest = { version = "0.10", optional = true } dsa = { version = "0.5", optional = true } eax = { version = "0.5", optional = true } @@ -79,7 +79,7 @@ ecdsa = { version = "0.16", optional = true, features = ["hazmat", "arithmetic"] ed25519 = { version = "1", default-features = false, features = ["std"], optional = true } ed25519-dalek = { version = "2", features = ["rand_core", "zeroize"], optional = true } generic-array = { version = "0.14.4", optional = true } -idea = { version = "0.5", optional = true } +idea = { version = "0.5", optional = true, features = ["zeroize"] } md-5 = { version = "0.10", features = ["oid"], optional = true } num-bigint-dig = { version = "0.8", default-features = false, optional = true } p256 = { version = "0.13", optional = true, features = ["ecdh", "ecdsa"] } @@ -87,7 +87,7 @@ rand_core = { version = "0.6", optional = true } ripemd = { version = "0.1", features = ["oid"], optional = true } rsa = { version = "0.9.0", optional = true } sha2 = { version = "0.10", features = ["oid"], optional = true } -twofish = { version = "0.7", optional = true } +twofish = { version = "0.7", optional = true, features = ["zeroize"] } typenum = { version = "1.12.0", optional = true } x25519-dalek = { version = "2", optional = true, default-features = false, features = ["static_secrets", "zeroize"] } |