We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
通过密码生成密钥
https://ld246.com/article/1670120449324
如果用户输入的密码短语是 Base64 编码的字符串,则直接使用解码后的 byte 数组作为仓库密钥。
因为有的用户会使用导出的密钥来作为密码短语初始化,这样会造成初始化后的密钥不一致,通过这个兼容性改进可以避免这个问题。
这样改进逻辑上有漏洞,即再也无法使用 Base64 编码的字符串作为密码短语来生成密钥。这种情况应该很少,所以就强制使用解码后的数据作为 key 了。
The text was updated successfully, but these errors were encountered:
🎨 改进数据仓库 通过密码生成密钥 Fix #6782
ce17ca0
ce17ca0#r91998377
Sorry, something went wrong.
🎨 改进数据仓库 通过密码生成密钥 Fix siyuan-note#6782
6d8022f
对密钥长度进行判断
🎨 改进数据仓库 通过密码生成密钥 Fix #6782 (#6784)
4c46d42
88250
No branches or pull requests
https://ld246.com/article/1670120449324
如果用户输入的密码短语是 Base64 编码的字符串,则直接使用解码后的 byte 数组作为仓库密钥。
因为有的用户会使用导出的密钥来作为密码短语初始化,这样会造成初始化后的密钥不一致,通过这个兼容性改进可以避免这个问题。
这样改进逻辑上有漏洞,即再也无法使用 Base64 编码的字符串作为密码短语来生成密钥。这种情况应该很少,所以就强制使用解码后的数据作为 key 了。
The text was updated successfully, but these errors were encountered: