Recommend sodium_mlock()/sodium_munlock() over sodium_memzero().

2014-05-08 14:30:15 -07:00 · 2014-05-08 14:30:15 -07:00 · 2a531bb519
commit 2a531bb519
parent be4917144b
1 changed files with 3 additions and 2 deletions
--- a/README.markdown
+++ b/README.markdown
@ -327,8 +327,9 @@ results in the stored hash value included in `str` when using the same
 parameters.

 `0` is returned if the passwords are matching, `-1` is they are not.
-The plaintext password should be immediately zeroed out from memory
-after this function returns, using `sodium_memzero()`.
+The plaintext password should be locked in memory using
+`sodium_mlock()` and immediately zeroed out and unlocked after this
+function returns, using `sodium_munlock()`.

 ## Constants available as functions