Tony Arcieri issues

Results 268 issues of


                                            Tony Arcieri

crypto-common: `KeyInit` for public keys / separate keygen trait?

I was looking at replacing the [`ml_kem::EncodedSizeUser`](https://docs.rs/ml-kem/0.2.1/ml_kem/trait.EncodedSizeUser.html) trait with `KeySizeUser` and `KeyInit`. This works fine for [`DecapsulationKey`](https://docs.rs/ml-kem/0.2.1/ml_kem/kem/struct.DecapsulationKey.html) (i.e. private keys), but it's a little bit weird for [`EncapsulationKey`](https://docs.rs/ml-kem/0.2.1/ml_kem/kem/struct.EncapsulationKey.html) since the...

elliptic-curve: remove `alloc` from `serde` feature

It doesn't actually appear to be used. Closes #1960

[WIP] aead: add `doc_usage!` macro

Adds a macro which generates the crate usage boilerplate, customized to a specific crate and example AEAD cipher. Downstream crates can use it like: ```rust #![doc = include_str!("../README.md")] #![doc =...

Use macros for boilerplate documentation?

Several crates have copy-and-paste boilerplate documentation which ultimately shows how to use a trait-based API, but giving concrete examples for a particular algorithm. It seems like we could potentially use...

zeroize: `libc` feature?

It looks like on several operating systems, the `libc` crate has wrappers for secure memset/bzero primitives: https://github.com/rust-lang/libc/pull/2156 We could potentially have an optional dependency on `libc` which calls into these...

[WIP] ctutils: constant-time selection and equality testing

(for lack of a better name) This is woefully incomplete but I'm pushing it up anyway since several people have asked about `const fn` support for `subtle`. This is effectively...

scrypt: Modular Crypt Format (MCF) support

Currently the `scrypt` crate only supports the PHC String Format, the default used by the `password-hash` crate. Ideally it would additionally support MCF as used via the `crypt(3)` interface, where...

k256: `FieldElement::batch_invert` test failure

This seems concerning: https://github.com/RustCrypto/elliptic-curves/actions/runs/19215294706/job/54923702169 ``` ---- arithmetic::field::tests::batch_invert stdout ---- thread 'arithmetic::field::tests::batch_invert' panicked at k256/src/arithmetic/field.rs:707:9: assertion `left == right` failed left: [FieldElement(FieldElement10x26([38682863, 5301787, 1528, 28470270, 51296658, 64620082, 49629673, 18189550, 33043284, 911401])),...

Use `fiat-crypto` crate?

As of #1413 we're now consuming `fiat-crypto` code verbatim with no post-processing (i.e for `const fn` support, which is first class now). This means instead of vendoring generated code, we...

aead-stream: improved STREAM initialization with key derivation

Currently the `Encryptor` and `Decryptor` accept an explicit nonce, which is 64-bit or 56-bit when used with IETF AEADs that use 96-bit nonces. This is too small to safely expose...