High-level cryptography interface powered by libsodium
MPL-2.0 License
Bot releases are visible (Hide)
#[SensitiveParameter]
annotation on some inputs
HiddenString
Published by paragonie-security 6 months ago
Published by paragonie-security over 2 years ago
Published by paragonie-security almost 3 years ago
info
parameter instead of the salt
parameter. This allows us to meet the KDF Security Definition (which is stronger than a mere Pseudo-Random Function).File
class no longer supports the resource
type. To migrate code, wrap your resource
arguments in a ReadOnlyFile
or MutableFile
object.File::asymmetricEncrypt()
and File::asymmetricDecrypt()
.These security improvements were identified through an internal code review after years of studying new cryptographic attacks. Halite v4 ciphertexts are still decryptable with v5, so upgrading should be largely drop-in.
Published by paragonie-security over 3 years ago
final
access modifier from private methods and guarantees PHP 8 support.Published by paragonie-security almost 4 years ago
Published by paragonie-security almost 4 years ago
Published by paragonie-scott about 5 years ago
ReadOnlyFile
.Published by paragonie-scott over 5 years ago
Throwable
.File
API. Thanks @elliot-sawyer.MutableFile
to be used on resources opened in wb
mode. Thanks @christiaanbaartse.Published by paragonie-scott over 5 years ago
Published by paragonie-scott over 5 years ago
Published by paragonie-scott almost 6 years ago
class_alias()
for ParagonIE\Halite\HiddenString
to the outsourced library.Published by paragonie-scott almost 6 years ago
^0|^1
to ^1|^2
.HiddenString
to a standalone library: https://travis-ci.org/paragonie/hidden-string
Published by paragonie-scott over 6 years ago
^0|^1
to ^1
.Published by paragonie-scott over 6 years ago
Fixes #105.
Please upgrade to Halite 4 as soon as possible. We are not providing support for older versions of Halite any more. See https://github.com/paragonie/halite/releases/tag/v3.4.0
Published by paragonie-scott over 6 years ago
Published by paragonie-scott over 6 years ago
WeakReadOnlyFile
, an alternative to ReadOnlyFile
that allows file modes other than rb
. The TOCTOU security guarantees are therefore slightly weaker with this class (hence the "Weak" part of the name).File
to allow stream objects (ReadOnlyFile
and MutableFile
) to be passed direclty instead of strings (for filenames) and resources (for open file handles).Published by paragonie-scott over 6 years ago
#72: Fixed forward-compatibility with libsodium 1.0.15.
Published by paragonie-scott over 6 years ago
Halite::VERSION
constant which was previously still 4.2.0
.Published by paragonie-scott over 6 years ago