mirror of
https://github.com/zulip/zulip.git
synced 2026-06-18 21:01:52 +08:00
b7b7475672
There are three functional side effects: • Correct an insignificant but mathematically offensive bias toward repeated characters in generate_api_key introduced in commit 47b4283c4b4c70ecde4d3c8de871c90ee2506d87; its entropy is increased from 190.52864 bits to 190.53428 bits. • Use the base32 alphabet in confirmation.models.generate_key; its entropy is reduced from 124.07820 bits to the documented 120 bits, but now it uses 1 syscall instead of 24. • Use the base32 alphabet in get_bigbluebutton_url; its entropy is reduced from 51.69925 bits to 50 bits, but now it uses 1 syscall instead of 10. (The base32 alphabet is A-Z 2-7. We could probably replace all of these with plain secrets.token_urlsafe, since I expect most callers can handle the full urlsafe_b64 alphabet A-Z a-z 0-9 - _ without problems.) Signed-off-by: Anders Kaseorg <anders@zulip.com> |
||
|---|---|---|
| .. | ||
| configure-rabbitmq | ||
| create-db.sql | ||
| create-pgroonga.sql | ||
| debathena-archive.asc | ||
| flush-memcached | ||
| generate_secrets.py | ||
| generate-self-signed-cert | ||
| initialize-database | ||
| inline_email_css.py | ||
| install | ||
| pgdg.asc | ||
| pgroonga-debian.asc | ||
| pgroonga-ppa.asc | ||
| postgres-init-db | ||
| restore-backup | ||
| setup-certbot | ||
| sha256-tarball-to | ||
| terminate-psql-sessions | ||
| upgrade-postgres | ||