Re: NaCl support for Emacs

[Stefan Monnier]

> Argh.  The auth-source cache is already implemented as a hack, is that
> hard enough evidence?  Quoting the relevant bit from
> `auth-source-netrc-parse':

> #+begin_src lisp
> ;; cache all netrc files (used to be just .gpg files)
> ;; Store the contents of the file heavily encrypted in memory.
> ;; (note for the irony-impaired: they are just obfuscated)
> (aput 'auth-source-netrc-cache file
>       (list :mtime (nth 5 (file-attributes file))
>             :secret (lexical-let ((v (mapcar '1+ (buffer-string))))
>                       (lambda () (apply 'string (mapcar '1- v))))))
> #+end_src

Not only I'm not worried about that, but I'm not sure libnettle (or any
other encryption library) would help you fix the underlying problem:
Emacs needs to be able to recover the password for later use anyway, so
anything we do can only ever be obfuscation, AFAIK.  Maybe there's some
clever way to do better, but again, for lack of hard evidence
I'm unconvinced.


        Stefan