cerc-io/lighthouse
15
0
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity
e504645767
lighthouse/crypto/eth2_keystore
History
Kirk Baird c5e97b9bf7 Add validation to kdf parameters (#1930) 
## Issue Addressed

Closes #1906 
Closes #1907 

## Proposed Changes

- Emits warnings when the KDF parameters are two low.
- Returns errors when the KDF parameters are high enough to pose a potential DoS threat.
- Validates AES IV length is 128 bits, errors if empty, warnings otherwise.

## Additional Info

NIST advice used for PBKDF2 ranges https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-132.pdf. 
Scrypt ranges are based on the maximum value of the `u32` (i.e 4GB of memory)

The minimum range has been set to anything below the default fields.
2020-11-19 08:52:51 +00:00
..
src Add validation to kdf parameters (#1930) 2020-11-19 08:52:51 +00:00
tests Add validation to kdf parameters (#1930) 2020-11-19 08:52:51 +00:00
Cargo.toml Add validation to kdf parameters (#1930) 2020-11-19 08:52:51 +00:00