Skip to content

[pull] master from RustCrypto:master #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1,605 commits into
base: master
Choose a base branch
from
Open

[pull] master from RustCrypto:master #4

wants to merge 1,605 commits into from

Conversation

@pull
Copy link

@pull pull bot commented Oct 3, 2019
edited
Loading

See Commits and Changes for more details.

Created by pull[bot]

Can you help keep this open source service alive? 💖 Please sponsor : )

@pull pull bot added the ⤵️ pull label Oct 3, 2019
@dingelish dingelish force-pushed the master branch 2 times, most recently from bdfc1ca to 6447161 Compare October 5, 2019 19:19
@pull pull bot added the merge-conflict Resolve conflicts manually label Feb 28, 2020
tarcieri and others added 23 commits January 20, 2025 18:17
@tarcieri
elliptic-curve: bump crypto-bigint to v0.6.0-rc.8; MSRV 1.83 (#1730)
258340c
@petryshkaCODE
minor typo CHANGELOG.md (#1727)
dda9615 
I fixed a typo in the CHANGELOG.md file, correcting the misspelling of
"Ouput" to "Output".
@dependabot
build(deps): bump crypto-bigint from 0.6.0-rc.8 to 0.6 (#1731)
aa00ba4
@tarcieri
CI: add typos job (#1734)
3393356 
This should hopefully cut down on the number of typo-fixing PRs we
receive by automatically checking for them in CI:

https://github.com/crate-ci/typos
@tarcieri
CI: add typos config for ignoring Base64 (#1735)
0596378 
Uses a regex to detect strings that appear to be sequences of
Base64-encoded characters, and re-enables the lint for the JWK
implementation in `elliptic-curve`
@tarcieri
aead: remove AeadCore::CiphertextOverhead (#1737)
fb85f46 
This size was intended for AEADs based on padded block cipher modes such
as CBC in order to express the underlying cipher's block size and
therefore the maximum amount of possible padding overhead beyond the
original plaintext, which is a full block (in the case a sentinel block
is added to a block-aligned plaintext input).

However, every AEAD we implement uses counter mode, i.e. a stream cipher
instead of a block cipher, which has no overhead, and as such
`CiphertextOverhead` is set to `U0` in every AEAD implementation we
currently maintain.

Furthermore, to my knowledge there are no standard AEADs which use CBC
or other padded block cipher modes of operation. The original goal was
to support an expired draft specification of a CBC+HMAC AEAD.

Since it doesn't appear to be of use, this PR removes it.
@newpavlov
cipher: add traits for tweakable block ciphers (#1721)
1a770af 
The trait design generally follows the `BlockCipherEnc/Dec` traits. We
currently do not have tweakable block cipher implementations which use
the backend capability, but I think it's still worth to include it for
API consistency and to future-proof the traits. Some of the helper
methods (e.g. `encrypt_blocks`) are not translated since it's unclear
how to organize passing of tweaks. Arguably, such methods should not be
used with tweakable block ciphers either way.

As a bridge between tweakable and non-tweakable traits the `ZeroTweak`
wrapper is introduced. It allows users to use tweakable block cipher
implementations with the parts of the ecosystem which expects
non-tweakble block ciphers while still being explicit in the code (e.g.
`ZeroTweak<Threefish256>`).
@tarcieri
aead: remove stateful AEAD traits (AeadMut*) (#1740)
88b3274 
We currently have no implementations which require these traits, or
plans to implement any.

If we do wind up needing these, they can be easily added back.
@newpavlov
Update getrandom to v0.3 (#1741)
b5fbe34
@newpavlov
crypto-common: add methods for weak key testing (#1742)
99f7bc9
@baloo
cipher: propagate the zeroize to hybrid-array (#1747)
efe27ed 
Example use: RustCrypto/block-ciphers#467
@newpavlov
Partial migration to rand_core v0.9 (#1746)
30b826f 
`kem` and `elliptic-curve` can not be migrated because of upstream
dependencies which still use `rand_core` v0.6 and expose it in their
public API.

`getrandom` crate features are renamed to `os_rng` following the similar
change in `rand_core`.
@baloo
signature: merge types from async-signature (#1720)
2992066 
Fixes #1677

This merge types defined in `async-signature` back into `signature` and
effectively deprecates `async-signature`
@tarcieri
signature: async rand_core v0.9 updates (#1749)
2e4bd57 
Followup to #1720
@tarcieri
signature v2.3.0-pre.5 (#1750)
0c41df9
@baloo
signature: Prehash should accept a TryCryptoRng (#1752)
684e9bc 
This is so that a `RandomizedDigestSigner` can call into
`hazmat::RandomizedPrehashSigner` directly with the provided rng.

Example use: RustCrypto/signatures#901
@baloo
signature v2.3.0-pre.6 (#1755)
41fa95f
@newpavlov
kem: remove tests, update to rand_core v0.9 (#1757)
1fdcdc7 
As discussed [here][0] the tests are not particularity useful
and block migration to rand_core v0.9.

[0]: #1642 (comment)
@newpavlov
elliptic-curve: fix Nightly compiler warnings (#1758)
e22a9f6 
`#[must_use]` annotations have no effect on trait methods.
@newpavlov
Upgrade all crates to the 2024 edition, bump MSRV to 1.85 (#1759)
6bbf1a4
@newpavlov
crypto-common: release v0.2.0-rc.2 (#1762)
9aad4bf
@newpavlov
digest: release v0.11.0-pre.10 (#1763)
be696aa
@newpavlov
cipher: release v0.5.0-pre.8 (#1764)
ad7adbb
dependabot bot and others added 30 commits September 22, 2025 18:15
@dependabot
build(deps): bump the all-deps group with 6 updates (#2021)
77f580d
@tarcieri
elliptic-curve: add point::LookupTable and BasepointTable (#2023)
38149fa 
Implementation is originally from the `k256` crate, but written to be
generic over a `Point` type which is bound by the `Group` trait.

Adds a `LookupTable` type which supports precomputed lookup tables for a
given curve point which can be selected from in constant time.

Also adds a feature-gated `BasepointTable` type with a `const fn`
constructor which builds a table for precomputed fixed-base scalar
multiplication using the `Group::generator` as the base point.

The `const fn` support for `BasepointTable` is achieved via a
`LazyLock`-style pattern which computes the table lazily upon first use
in a synchronized fashion. It supports using either
`std::sync::LazyLock`, or for `no_std` targets it also supports using
the `critical-section` feature of the `once_cell` crate.
@tarcieri
Cargo.lock: bump deps (#2024)
63520ae 
Mostly to get the `hybrid-array` update, which should clear the security
audit warning
@tarcieri
elliptic-curve: bump crypto-bigint to v0.7.0-rc.8 (#2025)
789d2be 
This notably enables the `subtle` feature of `hybrid-array`. This
apparently broke `digest` where previously the unsized coercion was
working until an explicit impl was available. So this PR also includes a
small fix to `digest`.
@tarcieri
digest v0.11.0-rc.3 (#2026)
ab7b15e
@tarcieri
elliptic-curve v0.14.0-rc.15 (#2027)
7414db4
@tarcieri
Switch from doc_auto_cfg to doc_cfg (#2029)
46e6415 
Fixes #2028
@dependabot
build(deps): bump hybrid-array from 0.4.4 to 0.4.5 in the all-deps gr…
4fb20b5 
…oup (#2030)
@dependabot
build(deps): bump crate-ci/typos from 1.36.2 to 1.36.3 (#2031)
c1047be
@dependabot
build(deps): bump crate-ci/typos from 1.36.3 to 1.38.0 (#2034)
8d36026
@baloo
chore(deps): bump block-padding from 0.4.0-rc.4 to 0.4.1 (#2032)
8a76ab7
@newpavlov
Derive Default for enums (#2035)
c6ab1b1 
The feature is stable since Rust 1.62.
@newpavlov
elliptic-curve: use base16ct::mixed in FromStr impl for `ScalarVa…
dd8e4ce 
…lue` (#2037)

Closes #1643
@dependabot
build(deps): bump crate-ci/typos from 1.38.0 to 1.38.1 (#2040)
0a3871f
@dependabot
Update Cargo.lock (#2039)
06e4e1a
@newpavlov
digest: tweak CollisionResistance docs (#2044)
b79f84d
@tarcieri
elliptic-curve v0.14.0-rc.16 (#2045)
b604e17
@newpavlov
digest: remove VariableOutput trait (#2043)
b0d40cd
@tarcieri
kem v0.3.0-pre.1 (#2050)
83720f2
@tarcieri
kem: use TryCryptoRng for encapsulate (#2049)
13941dc 
The method is fallible anyway, so errors should be propagated rather
than panicking
@tarcieri
kem v0.3.0-pre.2 (#2051)
d4d1818
@newpavlov
cipher: add dummy stream cipher tests (#2042)
ed13370
@tarcieri
kem v0.4.0-pre.0 (#2054)
046afa0 
Republishing with a bumped minor version to address #2053, since the
current release of `ml-kem` (v0.2.x) depends on `v0.3.0-pre.0`.
@tarcieri
kem: remove html_root_url
4948cb5 
This is auto-populated to point at docs.rs
@tarcieri
kem: re-export KeyInit and KeySizeUser from crypto-common (#2057)
d4e2095 
Encourages the use of these traits for initializing decapsulators that
impl the `Decapsulate` type.

(This is effectively #2056 without the supertrait bound)
@tarcieri
kem: re-export typenum::consts (#2058)
0ba3c98 
Access to typenum constants is needed to impl `KeySizeUser`
@tarcieri
kem: add associated Encapsulator to Decapsulate (#2055)
726beba 
Otherwise there's no way to generically access one from the other
@tarcieri
kem v0.4.0-pre.1 (#2059)
743ce89
@dependabot
build(deps): bump crate-ci/typos from 1.38.1 to 1.39.0 (#2062)
61a38ca
@dependabot
build(deps): bump the all-deps group with 2 updates (#2061)
2e040c0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

⤵️ pull merge-conflict Resolve conflicts manually

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

9 participants

@tarcieri @petryshkaCODE @newpavlov @baloo @sylvainpelissier @daxpedda @andrewwhitehead @VolodymyrBg @carloskiki