blitzwing/bintzwing
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

make key size and authentication tag size explicit instead of trusting on defaults

Browse source
This commit is contained in:
El RIDO 2016-08-09 13:16:15 +02:00
parent 5b7b234821
commit a28aebae7d
1 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
js/privatebin.js
View file

@ -491,11 +491,13 @@ $(function() {
*/
cipher: function(key, password, message)
{
// Galois Counter Mode, keysize 256 bit, authentication tag 128 bit
var options = {mode: 'gcm', ks: 256, ts: 128};
if ((password || '').trim().length === 0)
{
return sjcl.encrypt(key, this.compress(message), {mode : 'gcm'});
return sjcl.encrypt(key, this.compress(message), options);
}
return sjcl.encrypt(key + sjcl.codec.hex.fromBits(sjcl.hash.sha256.hash(password)), this.compress(message), {mode : 'gcm'});
return sjcl.encrypt(key + sjcl.codec.hex.fromBits(sjcl.hash.sha256.hash(password)), this.compress(message), options);
},
/**