From f4fbea4850a0ae847d5ca33bc6af9b61ba46705b Mon Sep 17 00:00:00 2001 From: Intel A80486DX2-66 Date: Sun, 24 Mar 2024 21:04:19 +0300 Subject: [PATCH] safe_mem.h: fix `secure_erase` macro --- c-programming/mem/safe_mem.h | 20 +++++++------------- 1 file changed, 7 insertions(+), 13 deletions(-) diff --git a/c-programming/mem/safe_mem.h b/c-programming/mem/safe_mem.h index 7bfea95..6e8b22a 100644 --- a/c-programming/mem/safe_mem.h +++ b/c-programming/mem/safe_mem.h @@ -12,6 +12,8 @@ #include +typedef unsigned char byte; + #define SAFE_FREE_ERROR_HOOK /* user-defined */ #define safe_free(ptr) do { \ @@ -24,7 +26,7 @@ #define precise_malloc(nmemb, size) \ /* prevents incorrect casting */ \ - malloc((size_t) nmemb * (size_t) size) + malloc((size_t) (nmemb) * (size_t) (size)) /* secure_erase(dest, count): erases memory explicitly */ #ifdef __FreeBSD__ @@ -44,24 +46,16 @@ # define SECURE_ERASE_WARRANTY "C11+: memset_s" # include -# define secure_erase(dest, count) memset_s(dest, count, 0, count) +# define secure_erase(dest, count) memset_s((dest), (count), 0, (count)) #else # define NO_SECURE_ERASE_WARRANTY 1 # include -# define __observe__(ptr) do { \ - if (*ptr == 0) { \ - ++(*ptr); \ - fprintf(stderr, ""); \ - } else \ - --(*ptr); \ -} while (0) - # define secure_erase(dest, count) do { \ - memset(dest, 0, count); \ - for (size_t i = 0; i < count; i++) \ - __observe__(dest[i]); \ + uintptr_t max = (uintptr_t) ((count) / sizeof(byte)); \ + for (size_t i = 0; i < max; i++) \ + *((byte*) (dest) + i) = 0; \ } while (0) #endif