Closed overheadhunter closed 2 years ago
While HS256 should remain the default signature when writing vault configs, HS384 and HS512 should be accepted when reading a vault config.
HS256
HS384
HS512
Currently, HS256 is hard coded and the algorithm header claim is ignored:
https://github.com/cryptomator/cryptofs/blob/0256d460b1a5dc75ffa7db6f0a1cc87e4c4d4933/src/main/java/org/cryptomator/cryptofs/VaultConfig.java#L186
While
HS256should remain the default signature when writing vault configs,HS384andHS512should be accepted when reading a vault config.Currently, HS256 is hard coded and the algorithm header claim is ignored:
https://github.com/cryptomator/cryptofs/blob/0256d460b1a5dc75ffa7db6f0a1cc87e4c4d4933/src/main/java/org/cryptomator/cryptofs/VaultConfig.java#L186