Michael Rosenberg
Michael Rosenberg
It [appears](https://github.com/dalek-cryptography/ed25519-dalek/blob/6d9bbd323edfce04f600427571e90afd86f52939/src/verifying.rs#L307) that `verify_strict` might permit [non-canonical `R`](https://hdevalence.ca/blog/2020-10-04-its-25519am), while `verify` does not. Notice the difference in the code is that `verify_strict` does a point comparison, while `verify` does a byte...
`merlin` fails tests on big endian machines https://github.com/dalek-cryptography/merlin/pull/60#issuecomment-697043828, due to some underlying casting that isn't respectful of endianness. It _probably_ isn't a security issue, but I don't like it. Currently...
We gotta do the same thing as `curve25519-dalek` for our KaTeX rendering. The "\ell" in [this section](https://docs.rs/ed25519-dalek/latest/ed25519_dalek/struct.PublicKey.html#on-the-multiple-sources-of-malleability-in-ed25519-signatures), fo example, does not render
This is neat. So per our conversation in https://github.com/RustCrypto/traits/issues/1508, I simplified everything down to two traits which are highly generic. Some benefits: 1. Way clearer what's going on 2. No...
It's not clear how we can reference old versions of ed25519/x25519 from within this repo. All the tags are gone. If it's possible, we should recover them. If not, we...
Previously, the way F-S transcripts were done was manually with a hash function and `to_bytes!` calls on the transcript values. I switched everything to use the [Merlin](https://merlin.cool) transcript constructor instead....
Recall that tests currently fail on bigendian machines, as per https://github.com/dalek-cryptography/merlin/pull/60#issuecomment-697043828. I already have a [STROBE implementation](https://github.com/rozbb/strobe-rs) that works on big-endian machines, and has an extremely similar API. This PR...
Started working on this and immediately hit a snag I can't figure out. The following fails ```shell cargo check --no-default-features --features "k256,serde_impls" ``` with the error ``` error[E0277]: the trait...
`generic-array` is getting bigger and harder to audit. We also don't use almost any of the features. It'd be nice to move to the smaller (and more future-oriented) [`hybrid-array`](https://github.com/RustCrypto/utils/tree/master/hybrid-array) crate....
The RSS feed in `server/src/list_articles.rs` has a `localhost` URL. This makes it unusable in deployments. The solution should be to have a new server flag `--hostname` that gives the hostname...