keysafe - Debian packaging for Keysafe

	Commit message (Collapse)	Author	Age
*	updated many dependencies, ghc 8.x	Joey Hess	2020-02-14
\| \| \| \| \| \| \| \| \| \| \| \| \|	Updated many dependencies, notably secret-sharing which dropped the dep on polynomial, and so allows building with ghc 8.x. Did not try to support building with older ghc because the semigroup-monid transition would make it nontrivial. Stackage lts-14.25 is a compromise, since the stack shipped in debian (even unstable) is not able to handle newer ones. This commit was sponsored by Eric Drechsel on Patreon.
*	bump lts version	Joey Hess	2018-07-05
\|
*	Updated to argon2-1.3.	Joey Hess	2018-03-26
\| \| \| \| \| \| \|	New parameters are set to the old values and test suite passes so this looks good. This commit was sponsored by Nick Daly on Patreon.
*	updated to http-client 0.5.3, servant 0.11 and stackage lts-9.0	Joey Hess	2017-08-10
\| \| \| \| \| \| \| \| \| \| \| \|	servant broke backwards compatibility; did not try to maintain back-compat (would be possible). New http-client exported some stuff I need; simplified code; did not try to maintain back-compat, although it would not be hard. Test suite passes. This commit was sponsored by Øyvind Andersen Holm.
*	Updated to use raaz-0.1.1.	Joey Hess	2017-03-03
\| \| \| \|	This commit was sponsored by John Peloquin on Patreon.
*	Remove embedded copy of argon2 binding, depend on fixed version of package.	Joey Hess	2016-10-05
\| \| \| \| \| \|	Test suite passes. This commit was sponsored by Ignacio on Patreon
*	implement client-server Proof Of Work	Joey Hess	2016-09-12
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Mashed up a argon2-based PoW with token buckets and bloom filters. This is intended to prevent a few abuses including: * Using a keysafe server for general file storage, by storing a whole lot of chunks. * An attacker guessing names that people will use, and uploading junk to keysafe servers under those names, to make it harder for others to use keysafe later. * An attacker trying to guess the names used for objects on keysafe servers in order to download them and start password cracking. (As a second level of defense, since the name generation hash is expensive already.) Completely untested, but it builds! This commit was sponsored by Andreas on Patreon.
*	Removed embedded copy of secret-sharing library, since finite-field only ↵	Joey Hess	2016-08-28
\| \| \| \| \| \|	supports prime fields. This caused shares to double in size.
*	pin servant to 0.7	Joey Hess	2016-08-28
\| \| \| \| \| \|	0.8 also works ok. What does not work is leaving it unpinned and letting servant-0.7 be used with servant-server-0.8. That produces strange compile errors, so pin to avoid.
*	initial http api using servant	Joey Hess	2016-08-20
\|
*	use zxcvbn-c for fairly good password entropy estimation	Joey Hess	2016-08-16
\| \| \| \| \|	This should be good enough to let the keysafe UI comment on how good a password the user chooses.
*	build with stack	Joey Hess	2016-08-15