xpra icon
Bug tracker and wiki

Opened 7 months ago

Last modified 3 months ago

#2615 assigned task

replace javascript crypto library with jsSHA

Reported by: Antoine Martin Owned by: Antoine Martin
Priority: major Milestone: 4.1
Component: network Version: 3.0.x
Keywords: Cc:

Description

jsSHA looks much more compact than forge.

Attachments (1)

asmcrypto.patch (6.4 KB) - added by Antoine Martin 3 months ago.
attempting to switch over

Download all attachments as: .zip

Change History (4)

comment:1 Changed 3 months ago by Antoine Martin

Status: newassigned

This may help with #2799.

comment:2 Changed 3 months ago by Antoine Martin

jsSHA is great and could be used for hmac authentication, but it doesn't handle AES...
So maybe we can just use the crypto API and drop IE11 support.

Examples here: webcrypto-examples.

comment:3 Changed 3 months ago by Antoine Martin

Big problem with browser crypto is that this relies on asynchronous promises, which would require a huge rewrite of the protocol layer which is sequential by nature.

Maybe asmcrypto.js instead? It handles both AES and HMAC with a synchronous API. (and this fork has documentation)

Last edited 3 months ago by Antoine Martin (previous) (diff)

Changed 3 months ago by Antoine Martin

Attachment: asmcrypto.patch added

attempting to switch over

Note: See TracTickets for help on using tickets.