Jeroen van Rijn
7a9ea3ee6d
Further overhaul of package line comments.
|
3 days ago | |
|---|---|---|
| .. | ||
| _aes | 4 months ago | |
| _blake2 | 6 months ago | |
| _chacha20 | 4 months ago | |
| _edwards25519 | 6 months ago | |
| _fiat | 6 months ago | |
| _sha3 | 6 months ago | |
| aead | 3 days ago | |
| aegis | 3 days ago | |
| aes | 3 days ago | |
| blake2b | 3 days ago | |
| blake2s | 3 days ago | |
| chacha20 | 3 days ago | |
| chacha20poly1305 | 3 days ago | |
| deoxysii | 3 days ago | |
| ed25519 | 3 days ago | |
| hash | 3 days ago | |
| hkdf | 3 days ago | |
| hmac | 3 days ago | |
| kmac | 3 days ago | |
| legacy | 3 days ago | |
| pbkdf2 | 3 days ago | |
| poly1305 | 3 days ago | |
| ristretto255 | 3 days ago | |
| sha2 | 3 days ago | |
| sha3 | 3 days ago | |
| shake | 3 days ago | |
| siphash | 3 days ago | |
| sm3 | 3 days ago | |
| tuplehash | 3 days ago | |
| x25519 | 3 days ago | |
| x448 | 3 days ago | |
| README.md | 1 year ago | |
| crypto.odin | 3 days ago | |
| rand_bsd.odin | 1 year ago | |
| rand_darwin.odin | 1 year ago | |
| rand_generic.odin | 8 months ago | |
| rand_js.odin | 1 year ago | |
| rand_linux.odin | 1 year ago | |
| rand_wasi.odin | 8 months ago | |
| rand_windows.odin | 1 year ago | |
README.md
crypto
A cryptography library for the Odin language.
Supported
This package offers various algorithms implemented in Odin, along with useful helpers such as access to the system entropy source, and a constant-time byte comparison.
Implementation considerations
- The crypto packages are not thread-safe.
- Best-effort is make to mitigate timing side-channels on reasonable architectures. Architectures that are known to be unreasonable include but are not limited to i386, i486, and WebAssembly.
- Implementations assume a 64-bit architecture (64-bit integer arithmetic is fast, and includes add-with-carry, sub-with-borrow, and full-result multiply).
- Hardware sidechannels are explicitly out of scope for this package.
Notable examples include but are not limited to:
- Power/RF side-channels etc.
- Fault injection attacks etc.
- Hardware vulnerabilities ("apply mitigations or buy a new CPU").
- The packages attempt to santize sensitive data, however this is, and will remain a "best-effort" implementation decision. As Thomas Pornin puts it "In general, such memory cleansing is a fool's quest."
- All of these packages have not received independent third party review.
License
This library is made available under the BSD-3 license.