Filippo Valsorda
Filippo Valsorda
On macOS we can spawn a simple osascript which is built-in and works just as well as pinentry-mac, with no dependencies.
Hello! We have collected some ML-KEM test vectors at https://c2sp.org/CCTV/ML-KEM, you might want to consider running them. There's also an "accumulated" vector that would offer the same coverage as the...
On almost all our platforms, we now have crypto/rand backends that ~never fail. * On Linux, we primarily use the [getrandom(2)](https://manpages.debian.org/unstable/manpages-dev/getrandom.2.en.html) system call, which never fails. * It may block...
The SIGPIPE issue in #1457 will occur for all backends, it's just that some are... less reliable than others ;) The problem is that registering a SIGPIPE handler removes the...
## Background FIPS 140 is a set of U.S. Government requirements for cryptographic modules. A number of companies must comply with them, for example as part of a broader FedRAMP...
As part of #69536 we have to store something called a "service indicator" which is annoyingly and somewhat rigidly regulated. Essentially, we need to keep a bit of state that's...
The README says > Given full control of the non-native component of the extension, an attacker may be able to list and decrypt .gpg files that can be accessed by...
**Is your feature request related to a problem? Please describe.** A common request during code review is to split a PR/CL into multiple ones. In that case the goal is...
@AGWA suggests at https://groups.google.com/a/chromium.org/g/ct-policy/c/936lR3MEUDU/m/fD9nWJceAgAJ > I can't help but wonder if the weird start/end dates contributed to this > mistake. When I was configuring my monitor, I was so focused...