-
Notifications
You must be signed in to change notification settings - Fork 29.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add caveats section in the doc of crypto #3479
Conversation
Add description of user responsibility in the choice of cypto algorithms and its key length. Some of recommendations for the safer use are also described.
|
||
The crypto module still supports some algorithms which are already | ||
compromised. And the API also allows to use ciphers and hashes with a | ||
small key size that are consider to be weak for a safe use. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
"... that are considered to be too weak for safe use."
Looks good in general but a few nits. |
@jasnell Thanks. I revised the doc and add a commit. |
## Caveats | ||
|
||
The crypto module still supports some algorithms which are already | ||
compromised. And the API also allows to use ciphers and hashes with a |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
"And the API also allows the use of ciphers and hashes with a" (replace to
with the
)
Thank you @shigeki ... just a few more I promise ;-). It's great that these recommendations are being updated! |
LGTM! Thanks @shigeki ! |
@indutny ... any feedback before I land? |
@indutny ... ping? |
Add description of user responsibility in the choice of cypto algorithms and its key length. Some of recommendations for the safer use are also described. PR-URL: #3479 Reviewed-By: James M Snell <jasnell@gmail.com>
Landed in 017fc5b |
Add description of user responsibility in the choice of cypto algorithms and its key length. Some of recommendations for the safer use are also described. PR-URL: #3479 Reviewed-By: James M Snell <jasnell@gmail.com>
Add description of user responsibility in the choice of cypto algorithms and its key length. Some of recommendations for the safer use are also described. PR-URL: #3479 Reviewed-By: James M Snell <jasnell@gmail.com>
landed in lts-v4.x-staging as 4a94c0a |
Add description of user responsibility in the choice of cypto algorithms and its key length. Some of recommendations for the safer use are also described. PR-URL: #3479 Reviewed-By: James M Snell <jasnell@gmail.com>
Add description of user responsibility in the choice of cypto algorithms and its key length. Some of recommendations for the safer use are also described. PR-URL: #3479 Reviewed-By: James M Snell <jasnell@gmail.com>
Add description of user responsibility in the choice of cypto algorithms and its key length. Some of recommendations for the safer use are also described. PR-URL: #3479 Reviewed-By: James M Snell <jasnell@gmail.com>
This is originally from nodejs/node-v0.x-archive#25564.
This adds caveats section in the crypto api documentation to notify users of the risks of weak algorithms and small keys and revises examples to use safe ones.
Fix: #3406