Ensure logs leak no keys

[kwannoel]

In GitLab by @fahree on Nov 20, 2020, 04:31

null

[kwannoel]

In GitLab by @fahree on Nov 20, 2020, 06:33

Add opaque data structures to wrap critical information such as private key or password or credit card numbers, so they don't revealed the enclosed secrets when printed at the REPL, in logs, in error messages, etc.

Maybe even encrypt them in memory with some random init vector and master key, so they are only visible while needed, and then overwritten (note: also overwrite any buffer for a network message where they were displayed).

Further add opaque data structures to wrap less critical yet still sensitive information such as user names and addresses.

Audit our code and and make sure the discipline is followed throughout.