Uploaded image for project: 'AeroGear'
  1. AeroGear
  2. AEROGEAR-4442

deriveKey in crypto-js generates same bits every time

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 1.3.0
    • 1.2.0
    • None
    • None

      When you call deriveKey multiple times every time a new hashed password should be generated in the current implementation this is not the case. The problem is the use of the sjcl library is wrong and the salt is empty every time, creating the same hash every time.

      see the bug when you open this fiddle in firefox:
      http://jsfiddle.net/uf54M/2/

            boliveir_managed_kafka_security (inactive user) Bruno Oliveira Silva (Inactive)
            edewit1@redhat.com Erik Jan de Wit
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: