Nikita Popov a861a3a93d Abort on invalid key size ...

Previously an incorrectly sized key was either silently padded
with NUL bytes or truncated. Especially the silent nature of this
behavior makes it extremely easy to use weak encryption. A common
mistake - which has also been extensively made in our tests - is
to use a password instead of a key.

Incorrectly sized keys will now be rejected.

2014-03-05 15:32:32 +01:00

4.6 KiB

Raw Blame History

View Raw