proxmox/proxmox-sys/Cargo.toml
Stefan Sterz eef12f91a1 sys: crypt: use constant time comparison for password verification
by using `openssl::memcmp::eq()` we can avoid potential timing side
channels as its runtime only depends on the length of the arrays, not
the contents. this requires the two arrays to have the same length, but
that should be a given since the hashes should always have the same
length.

Signed-off-by: Stefan Sterz <s.sterz@proxmox.com>
2024-05-22 10:26:43 +02:00

35 lines
757 B
TOML

[package]
name = "proxmox-sys"
version = "0.5.4"
authors.workspace = true
edition.workspace = true
license.workspace = true
repository.workspace = true
description = "System tools (using nix)."
exclude.workspace = true
[dependencies]
anyhow.workspace = true
base64.workspace = true
lazy_static.workspace = true
libc.workspace = true
log.workspace = true
nix.workspace = true
openssl = { workspace = true, optional = true }
regex.workspace = true
serde_json.workspace = true
serde = { workspace = true, features = [ "derive" ] }
zstd = { workspace = true, optional = true}
proxmox-io.workspace = true
proxmox-lang.workspace = true
proxmox-time.workspace = true
[features]
default = []
logrotate = ["dep:zstd"]
acl = []
crypt = ["dep:openssl"]
timer = []