gitea-mirror/rosenpass
1
0
Fork 0
mirror of https://github.com/rosenpass/rosenpass.git synced 2026-06-12 11:01:19 -07:00
Code Issues Packages Projects Releases Wiki Activity
1,308 Commits 60 Branches 19 Tags
28983b07cde5957709d9bacb2fb12de462cc1934
Commit Graph

215 Commits

Author SHA1 Message Date
leemeo3 d5487a89e1 Move rp netlink dependencies to workspace 2026-06-11 10:55:12 +02:00
Ilka Schulz bddf44ecc9 upgrade dependency: signal-hook-mio 2026-06-09 12:16:22 +02:00
Ilka Schulz 7d52584d40 upgrade dependency: test_bin 2026-06-09 11:35:29 +02:00
Ilka Schulz 40041d52a9 upgrade dependency: derive_builder 2026-06-09 11:13:37 +02:00
Ilka Schulz b5fd6b96db upgrade dependency: home 2026-06-09 11:04:11 +02:00
Ilka Schulz 565cf1bf2d upgrade dependency: signal-hook 2026-06-09 11:01:43 +02:00
Ilka Schulz 0a87ab13a6 upgrade dependency: clap_mangen 2026-06-09 10:59:05 +02:00
dependabot[bot] 23cf9a8eff chore(deps): bump hex-literal from 0.4.1 to 1.1.0 
Bumps [hex-literal](https://github.com/RustCrypto/utils) from 0.4.1 to 1.1.0.
- [Commits](https://github.com/RustCrypto/utils/compare/hex-literal-v0.4.1...hex-literal-v1.1.0)

---
updated-dependencies:
- dependency-name: hex-literal
  dependency-version: 1.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-08 23:13:41 +00:00
Ilka Schulz fd82409870 upgrade dependency: command-fds 2026-06-08 17:42:05 +02:00
Ilka Schulz 3a5ac78c03 upgrade dependency: criterion 2026-06-08 17:17:12 +02:00
Ilka Schulz 4a5d032161 upgrade dependency: toml 2026-06-08 17:14:13 +02:00
Ilka Schulz d854d0b3e5 upgrade dependency: env_logger 2026-06-08 17:14:13 +02:00
Ilka Schulz e0e9362046 also remove libcrux as it is no longer needed 2026-06-08 11:06:38 +02:00
Ilka Schulz be2b002fe4 remove libcrux-* (see PR for reasons) but leave libcrux and libcrux-test-utils in 2026-06-08 10:58:13 +02:00
Ilka Schulz f0a4526426 upgrade thiserror and genetlink 2026-06-07 14:50:15 +02:00
Ilka Schulz 78664898fd upgrade rustix (old version not compatible with Rust edition2024 anymore, ) 2026-06-07 13:56:33 +02:00
Ilka Schulz e733a5575e upgrade oqs-sys from 0.9.1 to 0.11.0 2026-06-07 12:37:35 +02:00
Ilka Schulz eec3ee6308 cargo: update rand to 0.10.1 (required by security advisory) 2026-06-07 10:29:09 +02:00
Karolin Varner 3c6a3a3735 fix: Upgrade stacker 
Potentially fixes issues with flaky tests using stacker.
 2025-09-05 16:12:11 +02:00
Amin Faez 223fbd551f feat: Derandomize the rosenpass protocol by adding testvectors 
- Introduced a new module `test_vector_sets.rs` containing test vector definitions for deterministic protocol testing.
- Added a new test file `test_vector_crypto_server.rs` to validate the protocol implementation using captured internal randomness.
- Added serialization and deserialization of `Secret`, `Public`, and `PublicBox` types in `serialization.rs`.
- Added necessary dependencies in `Cargo.toml` for test vectors: assert_tv, serde and base64
- Updated audit records in `audits.toml` and `imports.lock` for new dependencies.
 2025-08-28 11:41:58 +02:00
dependabot[bot] 83ad7652bc chore(deps): bump anyhow from 1.0.96 to 1.0.98 
Bumps [anyhow](https://github.com/dtolnay/anyhow) from 1.0.96 to 1.0.98.
- [Release notes](https://github.com/dtolnay/anyhow/releases)
- [Commits](https://github.com/dtolnay/anyhow/compare/1.0.96...1.0.98)

---
updated-dependencies:
- dependency-name: anyhow
  dependency-version: 1.0.98
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-07 23:44:29 +00:00
Karolin Varner de72e4a2a1 Use serde for JSON-encoding benchmark data (#667) 2025-08-07 16:40:16 +02:00
dependabot[bot] b905c0aa06 chore(deps): bump log from 0.4.26 to 0.4.27 
Bumps [log](https://github.com/rust-lang/log) from 0.4.26 to 0.4.27.
- [Release notes](https://github.com/rust-lang/log/releases)
- [Changelog](https://github.com/rust-lang/log/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rust-lang/log/compare/0.4.26...0.4.27)

---
updated-dependencies:
- dependency-name: log
  dependency-version: 0.4.27
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-07 16:03:32 +02:00
Jan Winkelmann (keks) 8e7fd174e8 nix fmt 2025-08-06 17:58:38 +02:00
Jan Winkelmann (keks) 7908359eab Use serde for JSON-encoding benchmark data 2025-08-06 17:58:38 +02:00
Karolin Varner 3c0e167347 fix(rosenpass): Integrate signal handlers with mio 
With this commit, rosenpass uses a signal handler based on the signal-hook-mio crate.

Even though, in this commit, no rosenpass-rp code is touched, this also
fixes the signal handling in rosenpass-rp. The way rosenpass is
integrated in rp is a bit of a hack – it just directly embeds
rosenpass in the same process (though on a dedicated thread). For this
reason, rp now just inherits rosenpass' signal handlers. The
rosenpass event_loop() will terminate. The main loop of `rp` just spends
most of the time waiting for rosenpass itself to finish, and exits when
it finishes.

Unfortunately, this means we are not using signalfd(2)[^0]; the
signal-hook-mio crate appears to use a pipe-based mechanism to deliver
events to mio instead.

This may not be such a bad thing, as signalfd has some severe drawbacks
with respect to subprocesses and masked signals[^1].

Fixes: #358 (https://github.com/rosenpass/rosenpass/issues/385)
Fixes: #522 (https://github.com/rosenpass/rosenpass/issues/522)
Fixes: #678 (https://github.com/rosenpass/rosenpass/pull/678)

[^0]: https://unixism.net/2021/02/making-signals-less-painful-under-linux/
[^1]: https://ldpreload.com/blog/signalfd-is-useless?reposted-on-request
 2025-08-04 08:44:15 +02:00
dependabot[bot] f31d635df8 chore(deps): bump tokio from 1.44.2 to 1.46.1 
Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.44.2 to 1.46.1.
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](https://github.com/tokio-rs/tokio/compare/tokio-1.44.2...tokio-1.46.1)

---
updated-dependencies:
- dependency-name: tokio
  dependency-version: 1.46.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-30 23:44:49 +00:00
dependabot[bot] e76e5b253f chore(deps): bump clap_mangen from 0.2.24 to 0.2.27 
Dependabot couldn't find the original pull request head commit, 518c533e040c5dd92156f84f8c20cffb9c7eacf6.
 2025-07-29 15:19:47 +00:00
Jan Winkelmann (keks) 5097d9fce1 Add benchmarking for cryptographic primitives and protocol performance 
This commit introduces two kinds of benchmarks:

1. Cryptographic Primitives. Measures the performance of all available
   implementations of cryptographic algorithms using traditional
   benchmarking. Uses criterion.
2. Protocol Runs. Measures the time each step in the protocol takes.
   Measured using a tracing-based approach.

The benchmarks are run on CI and an interactive visual overview is
written to the gh-pages branch. If a benchmark takes more than twice the
time than the reference commit (for PR: the main branch), the action
fails.
 2025-06-23 16:39:22 +02:00
wucke13 22b980a61f chore: format everything 
This implicates a change from nixpkgs-fmt to nixfmt. Nixfmt will become
the new standard on nix formatting, sanctioned by the nixpkgs. To verify
that these changes are purely in whitespace, but not semantic:

git diff --ignore-all-space -w HEAD^!

That will only show newline changes, make the diffing somewhat easier.

Signed-off-by: wucke13 <wucke13+github@gmail.com>
 2025-05-09 18:22:07 +02:00
Jan Winkelmann (keks) d023108d3b attempt to work around the importCargoLock bugs 2025-04-03 16:55:03 +02:00
Jan Winkelmann (keks) 9dd00e04c1 Use libcrux-blake2 with std 
This way we don't require the error_in_core feature of the Rust compiler
 2025-04-03 16:55:03 +02:00
Jan Winkelmann (keks) 185e92108e add blake2 from libcrux 2025-04-03 16:14:19 +02:00
Jan Winkelmann (keks) 253243a8c8 add kyber512 from libcrux 2025-04-03 16:14:19 +02:00
Jan Winkelmann (keks) 075d9ffff3 update libcrux chachapoly to use libcrux-chacha20poly1305 2025-04-03 16:14:19 +02:00
David Niehues ac3f21c4bd dev: add sha3 dependency 2025-03-19 11:29:11 +01:00
Dimitris Apostolou fe60cea959 fix: avoid duplicate crates 2025-02-24 13:48:31 +02:00
Karolin Varner b40b7f4f2f chore: cargo update 
- Had to remove the test checking for manpages to be generated for
  the keygen command since clap-mangen disabled creating manpages
  for hidden commands.
  https://github.com/clap-rs/clap/commit/d96cc71626c5291718b7db697d4aca2d03ef496f
- Had to pin home to the previous version because it now requires a
  new rust version without major version update
- Changed util/src/fd tests due to false positives in CI
  > note: panic did not contain expected string
  >      panic message: `"fd != -1"`,
  > expected substring: `"fd != u32::MAX as RawFd"`
 2025-02-22 17:45:34 +01:00
David Niehues 3effcb313e chore: update criterion to remediate security advisories. Fixes #596 2025-02-06 08:17:38 +01:00
dependabot[bot] d2539e445f build(deps): bump serde from 1.0.216 to 1.0.217 (#570) 
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.216 to 1.0.217.
- [Release notes](https://github.com/serde-rs/serde/releases)
- [Commits](https://github.com/serde-rs/serde/compare/v1.0.216...v1.0.217)

---
updated-dependencies:
- dependency-name: serde
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-12-29 17:48:54 +01:00
dependabot[bot] 6dc58cc6c1 build(deps): bump anyhow from 1.0.94 to 1.0.95 (#569) 
Bumps [anyhow](https://github.com/dtolnay/anyhow) from 1.0.94 to 1.0.95.
- [Release notes](https://github.com/dtolnay/anyhow/releases)
- [Commits](https://github.com/dtolnay/anyhow/compare/1.0.94...1.0.95)

---
updated-dependencies:
- dependency-name: anyhow
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-12-25 10:47:12 +01:00
dependabot[bot] d8fe3eba5f build(deps): bump clap_complete from 4.5.38 to 4.5.40 
Bumps [clap_complete](https://github.com/clap-rs/clap) from 4.5.38 to 4.5.40.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.5.38...clap_complete-v4.5.40)

---
updated-dependencies:
- dependency-name: clap_complete
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-18 10:29:44 +01:00
dependabot[bot] c435b772d2 build(deps): bump serde from 1.0.215 to 1.0.216 
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.215 to 1.0.216.
- [Release notes](https://github.com/serde-rs/serde/releases)
- [Commits](https://github.com/serde-rs/serde/compare/v1.0.215...v1.0.216)

---
updated-dependencies:
- dependency-name: serde
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-12 23:45:16 +00:00
dependabot[bot] 1c5e4ecf95 build(deps): bump rustix from 0.38.41 to 0.38.42 
Bumps [rustix](https://github.com/bytecodealliance/rustix) from 0.38.41 to 0.38.42.
- [Release notes](https://github.com/bytecodealliance/rustix/releases)
- [Changelog](https://github.com/bytecodealliance/rustix/blob/main/CHANGELOG.md)
- [Commits](https://github.com/bytecodealliance/rustix/compare/v0.38.41...v0.38.42)

---
updated-dependencies:
- dependency-name: rustix
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-12 18:12:41 +01:00
Karolin Varner 737781c8bc chore(coverage): Fix missing coverage from API integration tests 
Three changes:
1. We neglected to forward stderr from Rosenpass subprocess two
   in the API setup integration test (driveby fix)
2. Added rudimentary signal handling for program termination
   to rosenpass, specifically for the coverage reporting
3. Apparently std::process::Child::kill() sends SIGKILL and not
   SIGTERM, so our nice new signal handler was never used.
   Switched to a rustix based child reaper.

(2) and (3) where necessary because llvm-cov does not produce coverage
when a subprocess terminates due to a default signal handler.
 2024-12-11 00:01:44 +01:00
dependabot[bot] 5eda161cf2 build(deps): bump clap from 4.5.22 to 4.5.23 
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.22 to 4.5.23.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.5.22...clap_complete-v4.5.23)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-05 23:53:58 +00:00
dependabot[bot] e2c46f1ff0 build(deps): bump clap from 4.5.21 to 4.5.22 
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.21 to 4.5.22.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.5.21...clap_complete-v4.5.22)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-04 11:40:25 +01:00
dependabot[bot] e56798b04c build(deps): bump tokio from 1.41.1 to 1.42.0 
Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.41.1 to 1.42.0.
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](https://github.com/tokio-rs/tokio/compare/tokio-1.41.1...tokio-1.42.0)

---
updated-dependencies:
- dependency-name: tokio
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-04 11:40:04 +01:00
dependabot[bot] a9792c3143 build(deps): bump anyhow from 1.0.93 to 1.0.94 
Bumps [anyhow](https://github.com/dtolnay/anyhow) from 1.0.93 to 1.0.94.
- [Release notes](https://github.com/dtolnay/anyhow/releases)
- [Commits](https://github.com/dtolnay/anyhow/compare/1.0.93...1.0.94)

---
updated-dependencies:
- dependency-name: anyhow
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-03 23:26:40 +00:00
dependabot[bot] cc7f7a4b4d build(deps): bump mio from 1.0.2 to 1.0.3 
Bumps [mio](https://github.com/tokio-rs/mio) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/tokio-rs/mio/releases)
- [Changelog](https://github.com/tokio-rs/mio/blob/master/CHANGELOG.md)
- [Commits](https://github.com/tokio-rs/mio/compare/v1.0.2...v1.0.3)

---
updated-dependencies:
- dependency-name: mio
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-30 14:34:20 +01:00