We are, at best, inconsistent about where we zeroize sensitive data before deleting them (typically as an automatic goes out of scope).
The most noticeable parts are within the prf and f functions; I'm pretty sure we don't want to go through the expense of having the code zeroize the buffers each time; we could provide a way for them to use a shared buffer (which would be zeroized when we are done); obviously, the details would need to be worked out
We are, at best, inconsistent about where we zeroize sensitive data before deleting them (typically as an automatic goes out of scope).
The most noticeable parts are within the prf and f functions; I'm pretty sure we don't want to go through the expense of having the code zeroize the buffers each time; we could provide a way for them to use a shared buffer (which would be zeroized when we are done); obviously, the details would need to be worked out