-
-
Notifications
You must be signed in to change notification settings - Fork 19.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add encrypt_text/decrypt_text function using aes256 EBC algorithm #17721
Add encrypt_text/decrypt_text function using aes256 EBC algorithm #17721
Conversation
4c1a257
to
c347e5d
Compare
I think Chacha20-Poly1305 or AES-GCM would be the best alternative. Instead of encrypt_text() / decrypt_text(), I suggest encrypt_aes_ebc() and decrypt_aes_ebc(). That way we can always add additional algos and modes without breaking backwards compability by changing what encrypt_text() does under the hood. Also, the name should really make clear the algo and mode. If we go with only encrypt_text(), it shouldn't be a weak default. At least AES-CBC, probably better AES-GCM. |
I agree, I will upgrade the PR soon to implement those changes. Meaning renaming Plus I will add a warning to the documentation saying that encrypt method is weak |
Instead decrypt_text_aes_cbc, could we define the algorithm used like a parameter? |
Would it be useful to networking add a function to encryp/decrypt binary datatype? |
Moving to 3.2 milestone as we're about to enter the beta stage and release freeze for Godot 3.1. Only bug fixes against issues of the 3.1 milestone (or enhancements to core features of the 3.1 roadmap) will be considered until 3.1-stable is released. Note: If it's merged after 3.1-stable is released, this change might be considered for cherry-picking into a later 3.1.x release. |
Few random notes on security of this:
|
Porting #17366 to master branch. Fix this issue: #1969
Warning it uses AES EBC encryption and CBC would be a better alternative.