This repository has been archived by the owner on Feb 27, 2023. It is now read-only.
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
The auth tag len for AES-CBC+HMAC algorithms should match the key size, see RFC 7518 Section 5.2.4 and Section 5.2.5. Unfortunately this will (as-is) cause problems with decrypting AES-CBC+HMAC ciphertexts that were encrypted with this library that used 192-bit and 256-bit key sizes. A future pull request could add a flag to add some sort of compabitility flag to allow for decryption to continue working for those cases.
- Loading branch information