From 367111171fc2e366373c45710803cfe336a04c96 Mon Sep 17 00:00:00 2001 From: psykose Date: Wed, 16 Oct 2024 05:45:34 +0200 Subject: [PATCH] lower salt randomize level from VeryStrong to Strong this follows the documentation; the default is for longterm, not short lived per-request/session rng --- src/ui/setup.vala | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/ui/setup.vala b/src/ui/setup.vala index 74a428b..41fbb3b 100644 --- a/src/ui/setup.vala +++ b/src/ui/setup.vala @@ -1,7 +1,7 @@ static void salt_password (string password, out string token, out string salt) { const int SALT_BYTES = 8; uchar salt_bytes[SALT_BYTES]; - GCrypt.Random.randomize (salt_bytes); + GCrypt.Random.randomize (salt_bytes, GCrypt.Random.Level.STRONG); uchar salt_chars[2*SALT_BYTES+1]; for (int i = 0; i < SALT_BYTES; i += 1) { salt_chars[2*i+0] = "0123456789abcdef"[(salt_bytes[i]>>4)&0xf];