-
Notifications
You must be signed in to change notification settings - Fork 86
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge branch 'develop' into release/2.4.1
- Loading branch information
Showing
2 changed files
with
72 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -4,6 +4,7 @@ name = "subtle" | |
| # - update CHANGELOG | ||
| # - update html_root_url | ||
| # - update README if necessary by semver | ||
| # - if any updates were made to the README, also update the module documentation in src/lib.rs | ||
| version = "2.4.1" | ||
| authors = ["Isis Lovecruft <[email protected]>", | ||
| "Henry de Valence <[email protected]>"] | ||
|
|
@@ -30,4 +31,5 @@ rand = { version = "0.7" } | |
| default = ["std", "i128"] | ||
| std = [] | ||
| i128 = [] | ||
| # DEPRECATED: As of 2.4.1, this feature does nothing. | ||
| nightly = [] | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -9,13 +9,79 @@ | |
| // - Henry de Valence <[email protected]> | ||
|
|
||
| #![no_std] | ||
| #![cfg_attr(feature = "nightly", doc = include_str!("../README.md"))] | ||
| #![cfg_attr(feature = "nightly", deny(missing_docs))] | ||
| #![deny(missing_docs)] | ||
| #![doc(html_logo_url = "https://doc.dalek.rs/assets/dalek-logo-clear.png")] | ||
| #![doc(html_root_url = "https://docs.rs/subtle/2.4.1")] | ||
|
|
||
| //! Note that docs will only build on nightly Rust until | ||
| //! [RFC 1990 stabilizes](https://github.com/rust-lang/rust/issues/44732). | ||
| //! # subtle [](https://crates.io/crates/subtle) [](https://doc.dalek.rs/subtle) [](https://travis-ci.org/dalek-cryptography/subtle) | ||
| //! | ||
| //! **Pure-Rust traits and utilities for constant-time cryptographic implementations.** | ||
| //! | ||
| //! It consists of a `Choice` type, and a collection of traits using `Choice` | ||
| //! instead of `bool` which are intended to execute in constant-time. The `Choice` | ||
| //! type is a wrapper around a `u8` that holds a `0` or `1`. | ||
| //! | ||
| //! ```toml | ||
| //! subtle = "2.4" | ||
| //! ``` | ||
| //! | ||
| //! This crate represents a “best-effort” attempt, since side-channels | ||
| //! are ultimately a property of a deployed cryptographic system | ||
| //! including the hardware it runs on, not just of software. | ||
| //! | ||
| //! The traits are implemented using bitwise operations, and should execute in | ||
| //! constant time provided that a) the bitwise operations are constant-time and | ||
| //! b) the bitwise operations are not recognized as a conditional assignment and | ||
| //! optimized back into a branch. | ||
| //! | ||
| //! For a compiler to recognize that bitwise operations represent a conditional | ||
| //! assignment, it needs to know that the value used to generate the bitmasks is | ||
| //! really a boolean `i1` rather than an `i8` byte value. In an attempt to | ||
| //! prevent this refinement, the crate tries to hide the value of a `Choice`'s | ||
| //! inner `u8` by passing it through a volatile read. For more information, see | ||
| //! the _About_ section below. | ||
| //! | ||
| //! Versions prior to `2.2` recommended use of the `nightly` feature to enable an | ||
| //! optimization barrier; this is not required in versions `2.2` and above. | ||
| //! | ||
| //! Note: the `subtle` crate contains `debug_assert`s to check invariants during | ||
| //! debug builds. These invariant checks involve secret-dependent branches, and | ||
| //! are not present when compiled in release mode. This crate is intended to be | ||
| //! used in release mode. | ||
| //! | ||
| //! ## Documentation | ||
| //! | ||
| //! Documentation is available [here][docs]. | ||
| //! | ||
| //! ## Minimum Supported Rust Version | ||
| //! | ||
| //! Rust **1.41** or higher. | ||
| //! | ||
| //! Minimum supported Rust version can be changed in the future, but it will be done with a minor version bump. | ||
| //! | ||
| //! ## About | ||
| //! | ||
| //! This library aims to be the Rust equivalent of Go’s `crypto/subtle` module. | ||
| //! | ||
| //! The optimization barrier in `impl From<u8> for Choice` was based on Tim | ||
| //! Maclean's [work on `rust-timing-shield`][rust-timing-shield], which attempts to | ||
| //! provide a more comprehensive approach for preventing software side-channels in | ||
| //! Rust code. | ||
| //! | ||
| //! `subtle` is authored by isis agora lovecruft and Henry de Valence. | ||
| //! | ||
| //! ## Warning | ||
| //! | ||
| //! This code is a low-level library, intended for specific use-cases implementing | ||
| //! cryptographic protocols. It represents a best-effort attempt to protect | ||
| //! against some software side-channels. Because side-channel resistance is not a | ||
| //! property of software alone, but of software together with hardware, any such | ||
| //! effort is fundamentally limited. | ||
| //! | ||
| //! **USE AT YOUR OWN RISK** | ||
| //! | ||
| //! [docs]: https://docs.rs/subtle | ||
| //! [rust-timing-shield]: https://www.chosenplaintext.ca/open-source/rust-timing-shield/security | ||
|
|
||
| #[cfg(feature = "std")] | ||
| #[macro_use] | ||
|
|
||