Release v0.10rc1: bugfix: resty.aes: fixed memory overrun bug when user provided a salt… · luapower/resty.string · GitHub

v0.10rc1
82ff0e3
Unverified

This commit is not signed, but one or more authors requires that any commit attributed to them is signed.

Learn about vigilant mode
Compare

Choose a tag to compare

View all tags

v0.10rc1: bugfix: resty.aes: fixed memory overrun bug when user provided a salt…

v0.10rc1
82ff0e3
Compare

Choose a tag to compare

View all tags
Unverified

This commit is not signed, but one or more authors requires that any commit attributed to them is signed.

Learn about vigilant mode

dndx tagged this 23 May 19:07

… of less than 8 characters but EVP_BytesToKey() expects more.

disallows salt strings longer than 8 characters to avoid false sense of security.

Signed-off-by: Yichun Zhang (agentzh) <agentzh@gmail.com>

Assets 2

Source code (zip)

2017-05-23T19:07:23Z
Source code (tar.gz)

2017-05-23T19:07:23Z