memwiper

Now you can overwrite with garbage your inmutable strings without issues.

Overview

docs
tests
package

Now you can overwrite with garbage your inmutable strings without breaking all.

Free software: MIT license - Can I use this in a GPLed software?: Yes, see https://softwareengineering.stackexchange.com/questions/316393/what-to-do-when-using-mit-licensed-code-in-a-gpl-licensed-project for a quick overview of the matter.

Latest version v0.9.0.alpha

Installation

pip install memwiper

Documentation

https://python-memwiper.readthedocs.io/

Development

To run the all tests run:

tox

Platforms Supported:

Linux - Main dev platform, tested and working.
Mac - Tested and working, requires more testing. You can check Issue #2
Windows - Tested and working, requires more testing. You can check Issue #1

The code is full Python C API, not external libraries used, this was done to maximize the portability. {I'm searching help with the Mac and Windows testing, so check the issues and leave a comment if you wanna help!

Why?:

All your sensitive information belongs to the memory!

Well that obvious, I know, but is a weird issue to handle in most of the languages that uses garbage collection for memory management and inmutable strings, let me show a quick ipython example:

In [1]: s1="Secret Agent data"

In [2]: s2=s1

In [3]: id(s1)
Out[3]: 139856402094672

In [4]: id(s2)
Out[4]: 139856402094672

In [5]: del s1

In [6]: id(s1)
---------------------------------------------------------------------------
NameError                                 Traceback (most recent call last)
<ipython-input-6-4e7c3ecb85de> in <module>()
----> 1 id(s1)

NameError: name 's1' is not defined

In [7]: id(s2)
Out[7]: 139856402094672

In [8]: help(id)
Help on built-in function id in module builtins:

id(obj, /)
   Return the identity of an object.

   This is guaranteed to be unique among simultaneously existing objects.
   (CPython uses the object's memory address.)

In [3]: print(s2)
Out[3]: Secret Agent data

I delete the s1 string, but the s2 points to the same string, as you can see in the help showed there id show the memory address of the object, so s1 and s2 points to the same memory position.

The del s1 never really delete the memory object because the string have another reference to it. Furthermore if you del all the related objects the memory space is not really deleted until the GC needs/wants to.

And the worst part of this: As the Python strings are inmutable you CAN'T overwrite it with something like this:

in[9]: s2="#####"

Becasue this will create the string "#####" in some memory possition and points s2 to it, leaving the old content in memory, this space might be reused and overwrited by another variable when the GC mark it as "free".

So with memwiper you can overwrite the underlying buffer of the string with 0x0's to avoid have lingering in memory sensitive information.

Name		Name	Last commit message	Last commit date
Latest commit History 204 Commits
ci		ci
docs		docs
src/memwiper		src/memwiper
tests		tests
.bumpversion.cfg		.bumpversion.cfg
.cookiecutterrc		.cookiecutterrc
.coveragerc		.coveragerc
.editorconfig		.editorconfig
.flake8		.flake8
.gitignore		.gitignore
.readthedocs.yml		.readthedocs.yml
.travis.yml		.travis.yml
AUTHORS.rst		AUTHORS.rst
CHANGELOG.rst		CHANGELOG.rst
CONTRIBUTING.rst		CONTRIBUTING.rst
LICENSE		LICENSE
MANIFEST.in		MANIFEST.in
README.rst		README.rst
TODO.rst		TODO.rst
bandit.yml		bandit.yml
pyproject.toml		pyproject.toml
requirements-dev.txt		requirements-dev.txt
setup.cfg		setup.cfg
setup.py		setup.py
tox.ini		tox.ini

License

qlixed/python-memwiper

Folders and files

Latest commit

History

Repository files navigation

memwiper

Overview

Installation

Documentation

Development

Platforms Supported:

Why?:

About

Topics

Resources

License

Stars

Watchers

Forks

Languages