Skip to content
/ memguard Public
forked from awnumar/memguard

Easy and secure handling of sensitive memory, in pure Go.

License

Apache-2.0 license
0 stars 123 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

alvarolm/memguard

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

143 Commits
.github/ISSUE_TEMPLATE
.github/ISSUE_TEMPLATE
 
 
memcall
memcall
 
 
vendor/golang.org/x/sys
vendor/golang.org/x/sys
 
 
.travis.yml
.travis.yml
 
 
AUTHORS
AUTHORS
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
Gopkg.lock
Gopkg.lock
 
 
Gopkg.toml
Gopkg.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
appveyor.yml
appveyor.yml
 
 
container.go
container.go
 
 
docs.go
docs.go
 
 
docs_test.go
docs_test.go
 
 
errors.go
errors.go
 
 
internals.go
internals.go
 
 
logo.svg
logo.svg
 
 
memguard.go
memguard.go
 
 
memguard_test.go
memguard_test.go
 
 

Repository files navigation

MemGuard

Easy and secure handling of sensitive memory, in pure Go.

This is a thread-safe package, designed to allow you to easily handle sensitive values in memory. It supports all major operating systems and is written in pure Go.

Features

  • Interference from the garbage-collector is blocked by using system-calls to manually allocate memory.
  • It is very difficult for another process to find or access sensitive memory as the data is sandwiched between guard-pages. This feature also acts as an immediate access alarm in case of buffer overflows.
  • Buffer overflows are further protected against using a random canary value. If this value changes, the process will panic.
  • We try our best to prevent the system from writing anything sensitive to the disk. The data is locked to prevent swapping, system core dumps can be disabled, and the kernel is advised (where possible) to never include the secure memory in dumps.
  • True kernel-level immutability is implemented. That means that if anything attempts to modify an immutable container, the kernel will throw an access violation and the process will terminate.
  • All sensitive data is wiped before the associated memory is released back to the operating system.
  • Side-channel attacks are mitigated against by making sure that the copying and comparison of data is done in constant-time.
  • Accidental memory leaks are mitigated against by harnessing Go's own garbage-collector to automatically destroy containers that have run out of scope.

Some of these features were inspired by libsodium, so credits to them.

Full documentation and a complete overview of the API can be found here.

Installation

Although we do recommend using a release, the simplest way to install the library is to go get it:

$ go get github.com/awnumar/memguard

If you would prefer a signed release that you can verify and manually compile yourself, download and extract the latest release. Then go ahead and run:

$ go install -v ./

The latest release is guaranteed to be cryptographically signed with my most recent PGP key, which can be found on keybase. To import it directly into GPG, run:

$ curl https://keybase.io/awn/pgp_keys.asc | gpg --import

We strongly encourage you to vendor your dependencies for a clean and reliable build. Go's dep makes this task relatively frictionless.

About

Easy and secure handling of sensitive memory, in pure Go.

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

20 tags

Packages

No packages published

Languages

  • Go 100.0%