Skip to content

base64-ng 1.0.3

Choose a tag to compare

View all tags
@eldryoth eldryoth released this 29 May 14:38
· 17 commits to main since this release
Immutable release. Only release title and notes can be modified.
v1.0.3
This tag was signed with the committer’s verified signature.
eldryoth
SSH Key Fingerprint: EoLRQ5k4J5pYz3UMFmkrV798gYFNkToGS2xEPvebqB4
Verified
Learn about vigilant mode.
fee4afd
This commit was signed with the committer’s verified signature.
eldryoth
SSH Key Fingerprint: EoLRQ5k4J5pYz3UMFmkrV798gYFNkToGS2xEPvebqB4
Verified
Learn about vigilant mode.

base64-ng v1.0.3

Highlights

  • Continued the source-layout cleanup by splitting more internals out of lib.rs.
  • Added and hardened a dedicated macOS verification script for Apple Silicon and Intel Darwin targets.
  • Improved cleanup hardening around secret buffer clearing and vector spare-capacity wiping.
  • Removed an unsafe UTF-8 conversion path from secret string handling.
  • Tightened release evidence checks for constant-time assembly symbols after the module split.
  • Added clearer documentation for streaming decoder timing posture, RISC-V CT gate limitations, wrapped in-place decode behavior, and unsafe boundary policy.

Security and Assurance

  • SecretBuffer::clear() now wipes before logically clearing the vector.
  • wipe_vec_spare_capacity() now uses Vec::spare_capacity_mut() for a cleaner MaybeUninit-aware implementation.
  • Secret string conversion now stays panic-free and avoids unchecked UTF-8.
  • The unsafe boundary checker was updated to reflect the reduced unsafe surface.
  • wasm32 wipe policy continues to fail closed by default unless allow-wasm32-best-effort-wipe is explicitly enabled.

Validation

Passed the project release checks, including tests, clippy, doctests, panic policy, unsafe boundary policy, wasm wipe policy, constant-time policy, and CT assembly evidence generation.

Assets 3
Loading
0 Join discussion