@bascule isn't it a bit funny to write a crypto lib in a language that can be hot patched at runtime?
-
-
-
@mattetti considering most crypto tools are written in C/C++ which can be "hot patched" with heap/stack overflows, no, not really -
@bascule true but it's easier to exploit a gem/rubygems and overwrite your code at runtime. Using a C ext would make things slightly harder. -
@mattetti it's using libsodium for cryptography via FFI
End of conversation
New conversation -
-
-
@bascule neat! What are you using for tests? -
@jf abstracting the problem away so I don’t have to think about it as much as I can (but yes needs tests) -
@bascule is it naïve of me to think that a solid GPG test suite would help more people write GPG libraries? -
@jf this won't be interoperable with GPG. Building something different...
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.