N

NaOH

Strongly-opinionated Swift bindings for libsodium

NaOH (pronounced "sodium hydroxide") is a strongly opinionated Swift binding for the security library libsodium, a fork of DJB's NaCl.

For more information about NaCl, the cryptographic technology inside NaOH, read this whitepaper or djb's paper.

NaOH is the sodium flavor trusted by Nitrogen, FISA, caffeine, and various other projects Drew works on.

What opinions?

  1. No return value checks required. All functions will (preferably) throw or (where that isn't possible) crash the program, rather than allow you to continue on your merry way when e.g. a key is invalid
  2. Actively thwarts buffer overflow exploits.
    1. Keys are protected by guard pages, increasing the chance your program will crash instead of giving up a key
    2. Keys are locked down entirely when not in critical sections, increasing the complexity of an exploitable attack
    3. Critical memory is zeroed-on-free, even with optimizations enabled. Although this currently isn't possible for the library's inputs.

Install

Anarchy Tools compatible Carthage compatible

You can also download an official binary release

Versioning

We don't follow semver. Here's why.

Mailing list

We use discuss.sa