Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(weaver-fabric-node-sdk): made AES key length configurable in ECIES functions #2953

Merged
merged 4 commits into from
Dec 21, 2023

Conversation

VRamakrishna
Copy link
Contributor

The Weaver Fabric interoperation-node-sdk used the "aes-128-ctr" algorithm in a hardcoded manner for asymmetric encryption/decryption. 128-bit AES, though secure for classical computing, is quantum-unsafe.
So an option is added to use "aes-256-ctr" on demand.
The "aes-128-ctr" algorithm is still supported because many signing keys, typically those used in the Fabric testnets, have embedded elliptic curve parameters with key length 16 bytes, and those still need to be supported.

Fixes https://github.com/hyperledger/cacti/issues/2765 and supersedes https://github.com/hyperledger/cacti/pull/2907.

Pull Request Requirements

  • Rebased onto upstream/main branch and squashed into single commit to help maintainers review it more efficient and to avoid spaghetti git commit graphs that obfuscate which commit did exactly what change, when and, why.
  • Have git sign off at the end of commit message to avoid being marked red. You can add -s flag when using git commit command. You may refer to this link for more information.
  • Follow the Commit Linting specification. You may refer to this link for more information.

Character Limit

  • Pull Request Title and Commit Subject must not exceed 72 characters (including spaces and special characters).
  • Commit Message per line must not exceed 80 characters (including spaces and special characters).

A Must Read for Beginners
For rebasing and squashing, here's a must read guide for beginners.

sandeepnRES
sandeepnRES previously approved these changes Dec 18, 2023
@sandeepnRES sandeepnRES dismissed their stale review December 20, 2023 09:08

Need some changes to be done to fix failing tests and others.

…S functions

The Weaver Fabric interoperation-node-sdk used the "aes-128-ctr" algorithm
in a hardcoded manner for asymmetric encryption/decryption.
128-bit AES, though secure for classical computing, is quantum-unsafe.
So an option is added to use "aes-256-ctr" on demand.
The "aes-128-ctr" algorithm is still supported because many signing keys,
typically those used in the Fabric testnets, have embedded elliptic curve
parameters with key length 16 bytes, and those still need to be supported.

Signed-off-by: VRamakrishna <[email protected]>
…ting identity mgmt

Partially reverting changes made in https://github.com/hyperledger/cacti/pull/2901.
These changes made the IIN Agent chaincode operations fail.
Also fixed typos and formatting in the docs.

Signed-off-by: VRamakrishna <[email protected]>
Modified the SDK functions to be compatible with the Weaver Fabric Interoperation Chaincode.

Signed-off-by: VRamakrishna <[email protected]>
@sandeepnRES sandeepnRES enabled auto-merge (rebase) December 21, 2023 07:40
@sandeepnRES sandeepnRES merged commit 083ea4f into hyperledger-cacti:main Dec 21, 2023
69 of 92 checks passed
VRamakrishna referenced this pull request Jan 24, 2024
…al compilation

Also reverted a documentation change as per code change in https://github.com/hyperledger/cacti/pull/2953.

Signed-off-by: VRamakrishna <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

fix(weaver): usage of weak PRNG
3 participants