FellowTraveler
FellowTraveler
App immediately and consistently crashes when typing anything in the Search box. Kiwix 2.1.2 on MacOS Monterry 12.2.1 (with WikiHow zimfile open). Installed via the App Store, but then also...
OPENSSL_cleanse(bio, strWithBookends.GetLength()); We might want to use this call on any BIOs, so I'm adding an issue so I won't forget to do it later.
m_pkeypair in OTPseudonym is purely a vestige from the nym system before credentials were coded. It's only there currently so that knotwork's old data won't get broken. At some point...
http://developer.apple.com/library/mac/#documentation/security/Conceptual/SecureCodingGuide/SecurityDevelopmentChecklists/SecurityDevelopmentChecklists.html
Make sure whenever a critical string comparison is performed on some secret data or during some crypto operation, that the results of the string comparison are return in constant time....
https://github.com/FellowTraveler/Open-Transactions/blob/master/src/otlib/OTPassword.cpp#L249
Stack allocation of EVP_MD_CTX structures is common, for example: EVP_MD_CTX mctx; EVP_MD_CTX_init(&mctx); This will cause binary compatibility issues if the size of EVP_MD_CTX structure changes (this will only happen with...
http://tonyarcieri.com/all-the-crypto-code-youve-ever-written-is-probably-broken All the crypto code you’ve ever written is probably broken tl;dr: use authenticated encryption. use authenticated encryption. use authenticated encryption. use authenticated encryption. use authenticated encryption. use authenticated encryption....
Need to add additional permission to LAGPL'd code, which allows developers to distribute applications without forcing them to provide ways for their users to swap out LAGPL'd components for their...