Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 1.10.0.CR3, 2.0.0.Alpha5
Affects Version/s: None
Component/s: Passwords
Labels:
None

Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/1297

I encountered couple of issues with cryptography used for password masking:

implementation of masked passwords drops initialization vector (IV) randomly generated by the javax.crypto.Cipher which makes unmasking (decryption) impossible.
the implementation is using the same algorithm for key derivation and encryption, which is not possible as there is no encryption support in javax.crypto.Cipher for PKDBF2 family of algorithms, they are supported only in javax.crypto.SecretKeyFactory

blocks

ELY-816 Support for masked passwords in client XML config

Resolved

is blocked by

ELY-1572 japicmp force source compatibility, but only binary compatibility is required

Resolved

relates to

ENTESB-9132 Use Elytron Credential Store in custom PersistenceManager with new felix.configadmin 1.9.0

Closed

Assignee:: Ashley Abdel-Sayed (Inactive)

Reporter:: Zoran Regvart

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2017/01/11 8:07 AM

Updated:: 2021/10/24 6:54 AM

Resolved:: 2019/07/15 2:58 PM