chat - chat

	Commit message (Collapse)	Author	Age	Files	Lines
*	Merge pull request #62 from jedisct1/authenticated-encryption	Corey Hulen	2015-06-30	1	-6/+32
\|\ \| \| \| \|	SQL store: use authenticated encryption
\| *	SQL store: use authenticated encryption	Frank Denis	2015-06-24	1	-6/+32
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Data were encrypted using AES-CFB, with a properly randomized IV, but without any authenticators. This allows the data to be tampered with, without being noticed by the application. This diff slightly changes the encryption/decryption functions in sql_store.go to add a HMAC-SHA256 authenticator to encrypted messages. Two keys are derived from AtRestEncryptKey: the first half of SHA512(AtRestEncryptKey) for the block cipher and the second half for the MAC. This can be changed to a KDF if needed. The decryption function also checks that base64 decoding actually worked, and that the ciphertext is long enough to include the IV and the MAC. Unfortunately, it breaks backward compatibility. But if such a change has to be made, it has to be made early.
\| *	fixing unit test	=Corey Hulen	2015-06-16	1	-1/+1
\| \|
\| *	changing unit test	=Corey Hulen	2015-06-16	1	-1/+4
\| \|
\| *	first commit	=Corey Hulen	2015-06-14	17	-0/+4052
\|
*	Added the ability to have hashtags with dashes in them	nickago	2015-06-30	1	-0/+16
\|
*	rebase touch-ups	JoramWilander	2015-06-29	1	-1/+1
\|
*	fix more indenting	JoramWilander	2015-06-29	1	-1/+1
\|
*	fix indenting	JoramWilander	2015-06-29	1	-1/+1
\|
*	fixes mm-1316 improves channel notifications UI and updates channellist etag	JoramWilander	2015-06-29	1	-3/+9
\|
*	move valet feature switch to DB from config	JoramWilander	2015-06-17	1	-0/+6
\|
*	fixing unit test	=Corey Hulen	2015-06-16	1	-1/+1
\|
*	changing unit test	=Corey Hulen	2015-06-16	1	-1/+4
\|
*	first commit	=Corey Hulen	2015-06-14	17	-0/+4052