0ct0pu5/ente
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Reduce the memlimit for pwhash

Browse source
This commit is contained in:
Vishnu Mohandas 2020-09-29 00:34:22 +05:30
parent bb85b8f774
commit a4323ad280
2 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
lib/core/configuration.dart
View file

@ -55,7 +55,7 @@ class Configuration {
final encryptedKeyData = await CryptoUtil.encrypt(key, key: kek);
// Hash the passphrase so that its correctness can be compared later
final passphraseHash = await CryptoUtil.hash(utf8.encode(passphrase));
final passphraseHash = CryptoUtil.hash(utf8.encode(passphrase));
final attributes = KeyAttributes(
passphraseHash: passphraseHash,
kekSalt: Sodium.bin2base64(kekSalt),

5
lib/utils/crypto_util.dart
View file

@ -169,11 +169,12 @@ class CryptoUtil {
Sodium.cryptoPwhashAlgDefault);
}
static Future<String> hash(Uint8List passphrase) async {
static String hash(Uint8List passphrase) {
Sodium.init();
return Sodium.cryptoPwhashStr(
passphrase,
Sodium.cryptoPwhashOpslimitSensitive,
Sodium.cryptoPwhashMemlimitSensitive);
Sodium.cryptoPwhashMemlimitModerate);
}
static bool verifyHash(Uint8List passphrase, String hash) {