Adding zeroize for BlockRng and BlockRng64
#1374
Conversation
|
What about... adding pub struct BlockRng<R: BlockRngCore + ?Sized> {
results: R::Results,
index: usize,
/// The *core* part of the RNG, implementing the `generate` function.
#[cfg(not(feature = "zeroize"))]
pub core: R,
/// The *core* part of the RNG, implementing the `generate` function.
#[cfg(feature = "zeroize")]
pub core: R + ZeroizeOnDrop
}Just to ensure that the core implements it. |
There was a problem hiding this comment.
By itself this code doesn't do anything at all, but having a feature-flag-dependant bound does complicate the API. We should consider simply making zeroize a hard dependency.
@newpavlov thoughts please since you are also a maintainer of zeroize?
| /// Results element type, e.g. `u32`. | ||
| #[cfg(not(feature = "zeroize"))] | ||
| type Item; | ||
| /// Results element type, e.g. `u32`. | ||
| #[cfg(feature = "zeroize")] | ||
| type Item: DefaultIsZeroes; |
There was a problem hiding this comment.
This has potential to cause unexpected broken builds.
|
We don't care about the index, no, but what about |
|
Right now it's an associated type selected by an implementation crate, so it could use |
|
In the wrapper? This requires making |
|
No, it's not needed. The |
|
👍 |
Regarding #1348 and #934
This appears to work with my working branch of
chacha20without any breaking changes for libraries that use a[Item; N]. Also, I just discovered that using-C target-cpu=nativecan optimize the code in such a way that the difference between the performance of using pointers and a buffer is about 0.5%... so I think I'm going to close out #1367