Zeroize secp256k1 keys on drop

anoma · Sep 29, 2023 · 8efd1da · 8efd1da
1 parent 0322805
commit 8efd1da
Showing 1 changed file with 16 additions and 0 deletions.
diff --git a/core/src/types/key/secp256k1.rs b/core/src/types/key/secp256k1.rs
@@ -12,11 +12,13 @@ use data_encoding::HEXLOWER;
 use ethabi::Token;
 use k256::ecdsa::RecoveryId;
 use k256::elliptic_curve::sec1::ToEncodedPoint;
+use k256::elliptic_curve::ScalarPrimitive;
 #[cfg(feature = "rand")]
 use rand::{CryptoRng, RngCore};
 use serde::de::{Error, SeqAccess, Visitor};
 use serde::ser::SerializeTuple;
 use serde::{Deserialize, Serialize, Serializer};
+use zeroize::{Zeroize, ZeroizeOnDrop};
 
 use super::{
     ParsePublicKeyError, ParseSecretKeyError, ParseSignatureError, RefTo,
@@ -167,6 +169,20 @@ impl From<&PublicKey> for EthAddress {
 #[derive(Debug, Clone)]
 pub struct SecretKey(pub Box<k256::SecretKey>);
 
+impl Zeroize for SecretKey {
+    fn zeroize(&mut self) {
+        let scalar: &mut ScalarPrimitive<k256::Secp256k1> = unsafe {
+            // SAFETY: a libsecp256k1 secret key is just
+            // a wrapper around a scalar value, which itself
+            // is a wrapper around a byte buffer
+            std::mem::transmute(&mut *self.0)
+        };
+        scalar.zeroize();
+    }
+}
+
+impl ZeroizeOnDrop for SecretKey {}
+
 impl super::SecretKey for SecretKey {
     type PublicKey = PublicKey;