xpra icon
Bug tracker and wiki

Opened 4 months ago

Last modified 5 days ago

#2615 assigned task

replace javascript crypto library with jsSHA

Reported by: Antoine Martin Owned by: Antoine Martin
Priority: major Milestone: 4.1
Component: network Version: 3.0.x
Keywords: Cc:

Description

jsSHA looks much more compact than forge.

Attachments (1)

asmcrypto.patch (6.4 KB) - added by Antoine Martin 5 days ago.
attempting to switch over

Download all attachments as: .zip

Change History (4)

comment:1 Changed 3 weeks ago by Antoine Martin

Status: newassigned

This may help with #2799.

comment:2 Changed 5 days ago by Antoine Martin

jsSHA is great and could be used for hmac authentication, but it doesn't handle AES...
So maybe we can just use the crypto API and drop IE11 support.

Examples here: webcrypto-examples.

comment:3 Changed 5 days ago by Antoine Martin

Big problem with browser crypto is that this relies on asynchronous promises, which would require a huge rewrite of the protocol layer which is sequential by nature.

Maybe asmcrypto.js instead? It handles both AES and HMAC with a synchronous API. (and this fork has documentation)

Last edited 5 days ago by Antoine Martin (previous) (diff)

Changed 5 days ago by Antoine Martin

Attachment: asmcrypto.patch added

attempting to switch over

Note: See TracTickets for help on using tickets.