The cryptographic cipher we use for encrypting hex keys has an upper bounds of key size of 32 bytes, yet we don't prompt the user to enter in something less than or equal to that if they enter something greater than said upper bounds. This leads to a crash.
Instead, if the user enters a local password that is > 32 bytes we should re-prompt them to re-enter a shorter local password.
starbelly
commented
3 years ago
The cryptographic cipher we use for encrypting hex keys has an upper bounds of key size of 32 bytes, yet we don't prompt the user to enter in something less than or equal to that if they enter something greater than said upper bounds. This leads to a crash.
Instead, if the user enters a local password that is > 32 bytes we should re-prompt them to re-enter a shorter local password.