Oddbean new post about | logout
mleku | 10 days ago (raw) | root | parent | reply | flag 
 ok tbh i'm not sure about at free... most golang signature and encryption implementations include a step at the end of stuff where they write zeroes to each byte/word of the memory of the objects

i think someone wrote a nice memfence thing also which triggers an interrupt when nearby memory is accessed
mleku | 10 days ago (raw) | root | parent | reply | flag 
 if they made the GC zero the memory at free that would be awesome... but i can see why it might not be... they should add a flag or something for sensitive values so they are definitely zeroed, that would put Go above all
ChipTuner | 10 days ago (raw) | root | parent | reply | flag +2 
 Yeah I mean it's only useful in certain conditions like secrets. Clearing the stack with fencing is SLOW as fuck like 1000s of CPU cycles to write back to physical memory, often blocking other threads, and dealing with kernel preemption. That's a massive slowdown. Were willing to take the massive performance hit for secrets though.
ChipTuner | 10 days ago (raw) | root | parent | reply | flag 
 Probably 100,000s of cpu cycles