"It is impossible to safely implement any cryptosystem providing forward secrecy in C." https://www.daemonology.net/blog/2014-09-06-zeroing-buffers-is-insufficient.html