Fixed key generation length #21

jteich · 2022-09-22T23:05:29Z

No description provided.

jteich · 2022-09-22T23:06:21Z

lib/aes/aes.rb

    # Generate a random key
    def random_key(length=256)
-      _random_seed.unpack('H*')[0][0..((length/8)-1)]
+      _random_seed.unpack('H*')[0][0..((length/4)-1)]


The key as generated by _random_seed is a hex string. In a hex string, each character encodes 4 bits.

jteich · 2022-09-22T23:12:13Z

lib/aes/aes.rb

        else
-          chars = ("a".."z").to_a + ("A".."Z").to_a + ("0".."9").to_a
-          (1..size).collect{|a| chars[rand(chars.size)] }.join        
+          (1..size).collect{ rand(256).chr }.join


When using a modulo based upon a-z,A-Z,0-9 which comprises 62 characters, this effectively yields log2(62) (about 5.95) bits per character of randomness. rand(256) will yield a full 8 bits per character, inline with what OpenSSL::Random.random_bytes would return.

Fixed key generation length

f8e6baa

jteich commented Sep 22, 2022

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fixed key generation length #21

Fixed key generation length #21

Uh oh!

jteich commented Sep 22, 2022

Uh oh!

jteich Sep 22, 2022

Uh oh!

jteich Sep 22, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Fixed key generation length #21

Are you sure you want to change the base?

Fixed key generation length #21

Uh oh!

Conversation

jteich commented Sep 22, 2022

Uh oh!

jteich Sep 22, 2022

Choose a reason for hiding this comment

Uh oh!

jteich Sep 22, 2022

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant