Google 2 step verification displays in some cases only 16 characters (Base32) instead of 32 (which is size of key for SHA-1). Allow shorter (or longer) keys in totp-me - the class org.bouncycastle.crypto.macs.HMac will automagically fix the length (pad or cut) for us. We only need to disable length check.
kwart
commented
11 years ago
Google 2 step verification displays in some cases only 16 characters (Base32) instead of 32 (which is size of key for SHA-1). Allow shorter (or longer) keys in totp-me - the class org.bouncycastle.crypto.macs.HMac will automagically fix the length (pad or cut) for us. We only need to disable length check.