Change function signature of getrandom to only accept Zeroizing (!54) · Merge requests · Johannes Hayeß / olm-rs

Johannes Hayeß requested to merge random-zeroize into master Aug 12, 2020

Had this idea a while ago.

Basically forces one to convert the Zeroizing back to a Vec, if it's used outside of the context of random buffers for libolm. Should improve potential security simply due to inertia.

I wasn't sure if you could simply convert it back to a Vec, so I also added a test.

Change function signature of getrandom to only accept Zeroizing

Merge request reports