Closed mikejsavage closed 6 years ago
crypto_wipe's size arg is called secret_size in the manual, size in the header
also I guess "It probably wasn't the only copy..." in the header is a joke but it's a bit confusing :d
crypto_aead_lock/argon2i examples are like
uint8_t *text; /* Message to decrypt */
size_t text_size; /* Message size (NOT secret) */
when other pages have examples like uint8_t message[500];
should we fix the examples to only use one or the other?
one more PR is up. hopefully the last. https://github.com/LoupVaillant/Monocypher/pull/76
going to add loup's todo list to the PR because it has threading and is easier to follow
@CuleX, can you make the const PR (including docs changes)?
On it.
You guys are outstanding. Reviewing the PRs now.
Looks all good from my end. Can we close this now?
I would like to try tweaking the argon2i page to be like the aead_lock page, with the additional data arguments in a separate block
soon.
Okay, works for me.
Hi, @mikejsavage, any news from the argon2i page?
no, no progress
I'll have another go at it some time this week
do you want me to write up the new aliases too?
Oh yes that would be great, thanks!
OK, now we should be good to go. Any last word before we close this? (@mikejsavage, sorry for stealing your work, but I'd like to release Monocypher monday. Hope you're well.)
LGTM apart from the comments made on the commit. Same for #80. Apologies for sleeping on this, irl was kind of a mess so it fell under the truck.
sorry too for letting this slide!
reviewing commits/website now
Okay, I've done some last corrections. Closing this now, feel free to reopen it if I forgot anything.
Planning fallacy for the win!
I'm not done yet, but here are my notes so far. I hope this is readable!
intro.html
crypto_aead_lock.html crypto_aead_unlock.html crypto_lock.html crypto_unlock.html
crypto_argon2i.html
"The hardness of the computation can be chosen thus:" and the two bullet points are oddly phrased. How about:
crypto_blake2b.html crypto_blake2b_final.html crypto_blake2b_general.html crypto_blake2b_general_init.html crypto_blake2b_init.html crypto_blake2b_update.html
"crypto_blake2b(), provided for convenience (calling it is the same as calling crypto_blake2b_general() with a null key and a 64-byte hash)." - how about:
crypto_chacha20_H.html
crypto_chacha20_encrypt.html crypto_chacha20_init.html crypto_chacha20_set_ctr.html crypto_chacha20_stream.html crypto_chacha20_x_init.html
crypto_check.html crypto_sign.html crypto_sign_public_key.html
crypto_check_final.html crypto_check_init.html crypto_check_update.html crypto_sign_final.html crypto_sign_init_first_pass.html crypto_sign_init_second_pass.html crypto_sign_update.html
crypto_key_exchange.html crypto_x25519.html crypto_x25519_public_key.html
crypto_lock_auth.html crypto_lock_encrypt.html crypto_lock_final.html crypto_lock_init.html crypto_lock_update.html crypto_unlock_final.html crypto_unlock_update.html
crypto_memcmp.html crypto_zerocmp.html
crypto_poly1305.html crypto_poly1305_final.html crypto_poly1305_init.html crypto_poly1305_update.html
crypto_verify16.html crypto_verify32.html crypto_verify64.html
"Standard comparison functions tend to exit as soo as they find a difference" - "as soo" -> "as soon"
how about:
"provide comparison functions whose timing is independent from the content of their input." - maybe: "provide comparison functions that run in constant time"
crypto_wipe.html
"Secrets and values derived from them should stay in memory for the shortest possible amount of time..." - how about:
Size argument should maybe be called secret_size.