6ee164a3c9
Update miekg/dns and other dependencies
2020-10-19 16:46:12 +02:00
2b826bbb64
Update deps
2020-10-12 10:35:37 +02:00
7b7107902b
Update deps
2020-09-21 02:15:51 +02:00
e54056bc38
Update deps
2020-09-18 18:19:55 +02:00
1c52451025
Minor deps update
2020-07-31 16:01:41 +02:00
45b915882a
Update deps
2020-07-07 14:12:02 +02:00
539924f85f
Downgrade x/text to a single version
2020-06-19 20:56:21 +02:00
6dc484c177
Update deps
2020-06-18 23:19:28 +02:00
e9227daf6a
Update deps
2020-06-08 19:22:36 +02:00
2739db2733
Update deps
2020-06-02 13:56:05 +02:00
c6b2869317
Update Poly1305 dep
2020-04-26 13:03:48 +02:00
17fbad3648
Update deps
2020-04-01 12:15:13 +02:00
18a8a207ab
up deps
2020-03-24 13:01:57 +01:00
420c9682f9
Deps update for IllumOS
2020-03-21 16:41:20 +01:00
a1f3b34390
Update deps
2020-03-20 17:22:23 +01:00
bad3d0accd
Update deps
2020-03-19 10:18:43 +01:00
26ebb55c8c
Quite a lot of dependency updates
2020-03-13 17:58:44 +01:00
ee070be530
Update deps
2020-02-26 15:38:43 +01:00
c323bcde21
Update deps
2020-01-29 01:07:08 +01:00
b041eba311
Update deps
2020-01-15 19:58:59 +01:00
26971d254d
go crypto update
2020-01-11 08:57:16 -07:00
5c37d3b9de
Update deps
2020-01-05 19:00:16 -05:00
fc1754c45f
sys/unix update
2019-12-30 20:25:29 +01:00
6f62a82496
Update deps
2019-12-21 21:28:07 +01:00
44735cb97e
agl/ed25519 is not required any more
2019-12-18 12:40:52 +01:00
76de8a955a
Update deps
2019-12-11 14:10:16 +01:00
3d11d1d4e0
Revert "Update deps"
...
This reverts commit 915c90ae37
2019-12-09 12:02:42 +01:00
915c90ae37
Update deps
2019-12-09 10:09:37 +01:00
b4356b9fc8
Update deps
2019-11-29 00:06:14 +01:00
071dceef31
Update deps
2019-11-17 19:50:40 +01:00
568376ea13
Update deps
2019-11-14 22:34:38 -05:00
e6a4a4ffda
Update deps
2019-11-05 01:32:38 +01:00
c5bda9e2ae
Update deps
2019-10-31 18:00:44 +01:00
d17b572b75
Update deps
2019-10-26 16:51:14 +02:00
d2db6b55a8
Update deps
2019-10-12 21:22:15 +02:00
e49823d328
More deps update
2019-09-09 18:08:44 +02:00
1a06806477
Revert "Use CIRCL for X25519. That makes ephemeral key computation faster."
...
This reverts commit 5d130cdf0bdd9cf5cc9a
2019-09-09 17:43:30 +02:00
cef00d5d0b
Update deps
2019-09-07 11:04:40 +02:00
9b33aba757
Update deps
2019-07-06 18:03:41 +02:00
dd9cf5cc9a
Kill nacl/box
2019-06-24 19:13:34 +02:00
d80e72365f
Update deps
2019-06-24 14:55:34 +02:00
14d6345d6b
Deps update
2019-06-04 09:51:48 +02:00
11311d663d
Update deps
2019-06-02 13:25:06 +02:00
f8415c4a4b
Update deps
2019-05-31 22:49:25 +02:00
71858bfc98
Update deps
2019-04-28 23:19:52 +02:00
25ac94e7b2
Revert "Add Stretch-Hash-and-Truncate option for extreme DNS privacy"
...
This reverts commit 2d1dd7eaab
2019-04-02 01:57:48 +02:00
2d1dd7eaab
Add Stretch-Hash-and-Truncate option for extreme DNS privacy
...
This works over DNSCrypt and DoH, but requires a specifically configured
server.
Instead of sending the actual DNS queries, the SH-T system works as follows:
Step 1: the client query is evaluated through Argon2id, a military-grade,
memory-hard, CPU-hard stretching function. This makes it very expensive
for an attacker to find the original query, even using GPUs and ASICs.
For post-quantum resistance, we use it to generate a 1024-bit key.
Step 2: in case the Argon2id algorithm has a vulnerability, or, since this
is a popular function used for hashing passwords and for cryptocurrencices,
and people may have built rainbow tables already, we use a hash function over
the result of the previous function. This immediately defeats rainbow tables.
Step 3: the output of the hash function is truncated to 64-bit.
Due to a property of this operation known as collision-misresistance, and even
if the previous steps fail due to a nation-state actor, it is impossible for a
server operator to prove what exact query was originally sent by a client.
This feature is experimental.
2019-04-01 09:36:56 +02:00
674bd30d45
Update dependencies
2019-04-01 08:21:17 +02:00
c16016b112
Update deps
2019-03-14 02:17:58 +01:00
b624f8ef58
Accept sdns: scheme without a namespace
2019-03-03 18:20:39 +01:00
Frank Denis
Frank Denis