Alex Gaynor
Alex Gaynor
Unfortunately, OpenSSL no longer documents the precise algorithm for computing these. https://github.com/openssl/openssl/blob/master/crypto/x509/x509_cmp.c#L289 is the implementation. On Sun, Jan 19, 2025 at 2:32 AM Istvan Papp ***@***.***> wrote: > > I...
The first 22 digits of the salt need to be, by themselves, valid base64 which decode to 16 bytes. Other than that, passing your own salts is allowable: https://github.com/pyca/bcrypt/blob/main/src/_bcrypt/src/lib.rs#L83-L122
Fortunately there should be no compatibility risk: DER is a subset of BER, so people's existing BER parsers will work fine with DER. One of our big questions is whether...
Ok, that uses indefinite length encoding, so very clearly BER. If you're able to get a more recent one, that'd be great -- concurrently I'll ask around.
Thanks for digging this up. We expect this to be a long deprecation, so we're going to see what we can do here.
(I'm going to close this and track it as part of https://github.com/pyca/cryptography/issues/12936. Thank you for reporting this)
We weren't sure if this was a use. I'll look at adding it.
first step: adding docker images https://github.com/pyca/infra/pull/698
Ok, the long pole in this tent appears to be that Rust currently lacks a maintainer for the armv7 musl target, which is a blocker to promoting it to "Tier...
@charliermarsh if you were curious how all the pieces I've been requesting fit together, this is it.