Comments (1)
Some input from @andrewwhitehead:
In python we actually use the buffer protocol to copy data from an indy-credx object to askar without leaving duplicates, but that's not always possible.
For example: https://github.com/hyperledger/aries-cloudagent-python/blob/99b9e3713334c078212683c536277dc944025417/aries_cloudagent/indy/credx/holder.py#L84
raw_value is a memoryview object, which just references the buffer that will be zeroed
From what I understand, this means that the Python wrapper can pass around a value like the link secret without needing to copy the bytes out of the original buffer. As discussed on Discord, this means that, even though the link secret does need to be passed beyond the FFI boundary at least so the caller can store it in Askar or similar, this can be done in a way that the Rust layer can still effectively zeroize the link secret from memory.
Currently, the anoncreds-rs python wrapper will not accept a memoryview object for the link secret value in methods like process_credential and is strictly expecting a string value.
from anoncreds-rs.
Related Issues (20)
- @hyperledger/anoncreds-nodejs invalid reference to binary v0.2.0-dev.5 HOT 1
- release assets HOT 2
- Non revocation proof cannot be parsed by Indy-SDK HOT 3
- Issuing credentials with optional values HOT 5
- Proofs created between AnonCreds RS and Indy SDK are different HOT 15
- Should `id` be included in AnonCreds W3C credential, or is it 'valid' to only include it in the W3C credential HOT 2
- Numbers should be included as numbers in the AnonCreds W3C VC HOT 1
- Relax DID validation on prover_did on a credential request HOT 3
- W3C CredentialSubjectId property not set correctly HOT 2
- Revocation Registry ID validation is failing HOT 6
- Data Integrity Proof Cryptosuite naming HOT 5
- Update AnonCreds Data Integrity Proof docs for the new cryptosuite value
- Initially created W3cCredential uses string for number values HOT 3
- Security best practices for verifying AnonCreds W3C VPs HOT 2
- Conversion from W3cVerifiableCredential to the legacy format fails HOT 2
- Getting an error when try to create Schema via NodeJS Wrapper HOT 2
- Revoking one credential of many, of the same type, creates failed proofs for all credentials. HOT 13
- Using index 0 for issuing a credential gives "AnoncredsError: Invalid state: Revocation index is outside of valid range" HOT 2
- iOS crashes when built in release mode HOT 4
- Schema claims are optional, but creating a proof for a credential with optional claims fails
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from anoncreds-rs.