1. 17 Feb, 2020 2 commits
  2. 07 Feb, 2020 1 commit
  3. 03 Feb, 2020 1 commit
  4. 02 Feb, 2020 9 commits
  5. 24 Jan, 2020 13 commits
  6. 15 Jan, 2020 1 commit
  7. 14 Jan, 2020 2 commits
  8. 07 Jan, 2020 2 commits
    • Daniel Huigens's avatar
      Remove support for legacy encrypted private keys (#1029) · fd6d7b60
      Daniel Huigens authored
      Both those with a 2-byte hash (instead of SHA1 or an AEAD authentication
      tag) and those without an S2K specifier (i.e., using MD5 for S2K) -
      support for the latter was already broken.
      
      Vulnerabilities can arise not just from generating keys like this, but
      from using them as well (if an attacker can tamper with them), hence why
      we're removing support.
      fd6d7b60
    • Daniel Huigens's avatar
      Implement key.validate() (#1028) · 8f355a75
      Daniel Huigens authored
      This function checks whether the private and public key parameters
      of the primary key match.
      
      This check is necessary when using your own private key to encrypt
      data if the private key was stored on an untrusted medium, and
      trust is derived from being able to decrypt the private key.
      8f355a75
  9. 30 Dec, 2019 1 commit
  10. 27 Dec, 2019 1 commit
  11. 20 Dec, 2019 3 commits
  12. 29 Nov, 2019 3 commits
  13. 26 Nov, 2019 1 commit