Filippo Valsorda
Filippo Valsorda
It would be nice to be able to use FIDO2 tokens (or passkeys) to authenticate with the web interface instead of passwords. It can be made easy to set up...
This uses `internal/witness` like `cmd/witness`, but with a few major differences: * in general, addrwitness is designed to be directly addressable from the Internet, without a fetcher, enabling low-latency logs...
If an iOS client enables end-to-end encrypted backups, the chats are not stored in device backups anymore, but only in iCloud. From a Mac it's very convenient to access the...
I know `sodium.ready` needs to be called before using the library, but doing so at import time is difficult in libraries (where the await should be delegated to the application)...
None of the current test vectors exercise the case in which the first k is higher than q and gets rejected. This happens with 2^-32 chance for P-256 and with...
Random strings are useful as passwords, bearer tokens, and 2FA codes. Generating them without bias from crypto/rand is not trivial at all, and applications are lured into using math/rand for...
Currently, if an application needs to generate a reproducible sequence of random bytes, it can choose amongst * `math/rand.(*Rand).Read`, which uses the predictable Go 1 random number generator; or *...
Since the config holds sensitive values like the OTR private key and stored fingerprints, the user might wish to encrypt it. The option is offered on enroll, and then autodetected...
The update command will download a new version of a single package. However this new version might have new dependencies, which end up not being vendored. By default update should...