beenull/ente
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Add comment

Browse source
This commit is contained in:
Vishnu 2023-03-01 16:14:53 +05:30
parent ef616f116b
commit 55fefbecc7
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
src/utils/crypto/index.ts
View file

@ -58,6 +58,10 @@ export async function generateKeyAttributes(
return { keyAttributes, masterKey }; return { keyAttributes, masterKey };
} }
// We encrypt existingKeyAttributes with a key derived from the passphrase (with
// Interactive mem and ops limits) to avoid saving them to local storage in
// plain text. This means that on the web user will always have to enter their
// passphrase to access their masterKey.
export async function generateAndSaveIntermediateKeyAttributes( export async function generateAndSaveIntermediateKeyAttributes(
passphrase: string, passphrase: string,
existingKeyAttributes: KeyAttributes, existingKeyAttributes: KeyAttributes,
@ -90,7 +94,6 @@ export const saveKeyInSessionStore = async (
key: string, key: string,
fromDesktop?: boolean fromDesktop?: boolean
) => { ) => {
// the key is encrypted before saving in session storage, to obfuscate it from the browser
const cryptoWorker = await ComlinkCryptoWorker.getInstance(); const cryptoWorker = await ComlinkCryptoWorker.getInstance();
const sessionKeyAttributes = await cryptoWorker.generateKeyAndEncryptToB64( const sessionKeyAttributes = await cryptoWorker.generateKeyAndEncryptToB64(
key key