Update documentation (#31)

* Add Buffer() method. * Bring documentation up to date. * Must remember godoc doesn't like markdown. * Update documentation
awnumar · Aug 13, 2017 · 44f4960 · 44f4960
1 parent ad1f60b
commit 44f4960
Show file tree

Hide file tree

Showing 2 changed files with 19 additions and 1 deletion.
diff --git a/docs.go b/docs.go
@@ -19,7 +19,7 @@ The general working cycle is as follows:
 
 The number of LockedBuffers that you are able to create is limited by how much memory your system kernel allows each process to mlock/VirtualLock. Therefore you should call Destroy on LockedBuffers that you no longer need, or simply defer a Destroy call after creating a new LockedBuffer.
 
-If a function that you're using requires an array, you can cast the Buffer to an array and then pass around a pointer. Make sure that you do not dereference the pointer and pass around the resulting value, as this will leave copies all over the place.
+If a function that you're using requires an array, you can cast the buffer to an array and then pass around a pointer. Make sure that you do not dereference the pointer and pass around the resulting value, as this will leave copies all over the place.
 
     key, err := memguard.NewRandom(16, false)
     if err != nil {

diff --git a/memguard.go b/memguard.go
@@ -156,6 +156,24 @@ func NewRandom(length int, readOnly bool) (*LockedBuffer, error) {
 	return b, nil
 }
 
+/*
+Buffer returns a slice that references the secure, protected portion of memory.
+
+For the sake of good coding practice, we recommmend that you do not allocate the
+return value, and instead simply call Buffer each time that you need to access
+the memory that it references. There is no security issue with doing so, but it
+just makes it easier to quickly see where you're handling protected memory.
+
+If a function that you're using requires an array, you can cast the buffer to
+an array and then pass around a pointer:
+
+    // Make sure the size of the array matches the size of the buffer.
+    // In this case that size is 16. This is very important.
+    keyArrayPtr := (*[16]byte)(unsafe.Pointer(&b.Buffer()[0]))
+
+Make sure that you do not dereference the pointer and pass around the resulting
+value, as this will leave copies all over the place.
+*/
 func (b *container) Buffer() []byte {
 	return b.buffer
 }