0c520845f3
Remove the "Masterkey" field from fusefrontend.Args because it should not be stored longer than neccessary. Instead pass the masterkey as a separate argument to the filesystem initializers. Then overwrite it with zeros immediately so we don't have to wait for garbage collection. Note that the crypto implementation still stores at least a masterkey-derived value, so this change makes it harder, but not impossible, to extract the encryption keys from memory. Suggested at https://github.com/rfjakob/gocryptfs/issues/137 |
||
|---|---|---|
| .. | ||
| cryptocore_test.go | ||
| cryptocore.go | ||
| hkdf_test.go | ||
| hkdf.go | ||
| nonce.go | ||
| randprefetch_test.go | ||
| randprefetch.go | ||