Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mitra.social/objects/019524d1-ff50-87c6-7f04-aacf0b285507">silverpill (silverpill@mitra.social)'s status on Friday, 21-Feb-2025 04:25:30 JST</a><a href="https://mitra.social/users/silverpill" title="silverpill@mitra.social"><img src="https://gnusocial.jp/avatar/85321-48-20230105202807.webp" width="48" height="48" alt="silverpill" style="position: absolute; left: 0; top: 0;">silverpill</a><div><a href="https://mitra.social/objects/01951f5b-266b-1d58-5886-a7cc39bb111e" rel="in-reply-to">in reply to</a></div></section><article><p><a href="https://grange.la/users/b0y">@b0y</a> The situation is more complicated than I thought. We use legacy signatures because they are compatible with cryptographic standards used in fediverse. Without the -l flag, minisign computes Blake2b-512 digest first, and the signs it. Fediverse applications use SHA-256, so the only way to make them interoperate with minisign is to use legacy format where signature is generated without hashing.</p><p>A new type of identity proof can be added, but I am not sure about minisign because it is not user friendly. Ideally, it should be something with a GUI.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4594209#notice-9006741">In conversation</a><time datetime="2025-02-21T04:25:30+09:00" title="Friday, 21-Feb-2025 04:25:30 JST">about 2 days ago</time> <span>from <span><a href="https://mitra.social/objects/019524d1-ff50-87c6-7f04-aacf0b285507" rel="external" title="Sent from mitra.social via ActivityPub">mitra.social</a></span></span><a href="https://mitra.social/objects/019524d1-ff50-87c6-7f04-aacf0b285507">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
silverpill (silverpill@mitra.social)'s status on Friday, 21-Feb-2025 04:25:30 JST silverpill
in reply to
@b0y The situation is more complicated than I thought. We use legacy signatures because they are compatible with cryptographic standards used in fediverse. Without the -l flag, minisign computes Blake2b-512 digest first, and the signs it. Fediverse applications use SHA-256, so the only way to make them interoperate with minisign is to use legacy format where signature is generated without hashing.
A new type of identity proof can be added, but I am not sure about minisign because it is not user friendly. Ideally, it should be something with a GUI.
In conversationabout 2 days ago from mitra.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice