summaryrefslogtreecommitdiff
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* use HawkKey everywhere hawk keys are handledpennae2022-07-176-85/+44
| | | | the db already does this, crypto did not.
* add dedicated types for all the tokenspennae2022-07-176-84/+175
| | | | using SecretBytes for all of them isn't that great.
* make crypto fields private if they're not used outside cryptopennae2022-07-171-7/+7
|
* don't use SecretBytes in HawkKey/SecretKeypennae2022-07-175-33/+37
|
* remove zeroize dependencypennae2022-07-171-8/+1
| | | | | | | | this is not so much a problem as a possible source of false security for the readers. all secret keys we handle are serialized in some form, and those serialization buffers are *not* zeroed out after use. zeroing our raw buffers doesn't help much in that case, using a zero-on-free allocator would be much more helpful.
* remove remnants of trying to quickcheck thingspennae2022-07-171-4/+0
| | | | it never worked out, but a bit of support stuff remained.
* apply rustfmtpennae2022-07-174-4/+8
|
* fix clippy warningspennae2022-07-174-4/+6
|
* add test vector for password changes and account resetpennae2022-07-161-1/+48
| | | | | | | these are not "official" test vectors, just an example of what the implementation does currently. since it works with other parts of the ecosystem (most importantly firefox itself) they seem good enough to include.
* allow integration tests to run in parallelpennae2022-07-142-6/+5
| | | | | this doesn't do much for performance, but it does allow running the tests with a simple `cargo t`.
* simplify spawn_loggedpennae2022-07-141-23/+7
|
* keep oauth tokens around a bit after expirypennae2022-07-132-16/+12
| | | | | | | firefox wants to delete profile access tokens after they're expired and logs errors if it can't do that. since this happens every hour we can end up with a bunch of error logs very quickly, so we better let it do what it wants.
* initial importpennae2022-07-1323-0/+5826