aboutsummaryrefslogtreecommitdiff
path: root/javascript/olm_post.js
AgeCommit message (Collapse)Author
2018-06-27add initial implementation of basic private key encryption functionalityHubert Chathi
2018-01-09patch for libolm: fix some typos in JavaScript libraryHubert Chathi
From 4a82d31e8cb808a04956fc847ed0ec0ff322b956 Mon Sep 17 00:00:00 2001 From: Hubert Chathi <hubert@uhoreg.ca> Date: Wed, 3 Jan 2018 21:37:43 -0500 Subject: [PATCH] fix some typos in JavaScript library Signed-off-by: Hubert Chathi <hubert@uhoreg.ca>
2016-12-16Avoid buffer overrun on encryptionRichard van der Hoff
Make sure we null-terminate encrypted strings before passing them to UTF8ToString. This used to work when we allocated the buffer on the stack, because it turns out that allocate() zeroinits the returned memory. malloc(), of course, does not.
2016-12-15Merge pull request #39 from matrix-org/rav/messages_on_heapRichard van der Hoff
Allocate memory for message blobs on the heap
2016-12-15typoRichard van der Hoff
2016-12-15zero out plaintext buffersRichard van der Hoff
Avoid leaving copies of the plaintext sitting around in the emscripten heap.
2016-12-14Allocate memory for message blobs on the heapRichard van der Hoff
Messages can be very large, so we don't really want to allocate them on the stack. Switch to using the heap for them, and try to clean up some of the string handling while we're at it.
2016-12-12Better handling of exceptions during loadingRichard van der Hoff
If we get an exception during load, don't define half of window.Olm (which confuses apps). This is a partial fix to https://github.com/vector-im/riot-web/issues/2726.
2016-09-05Merge pull request #15 from matrix-org/rav/has_received_messageRichard van der Hoff
OlmSession.has_received_message
2016-09-05Fix megolm decryption of UTF-8Richard van der Hoff
Repeat the fix from b10f90d for megolm messages. It turns out that the 'length' argument to 'Pointer_stringify' doesn't work if the input includes characters >= 128. Rather than try to figure out which methods can return UTF-8, and which always return plain ascii, replace all uses of Pointer_stringify with a 'length' argument with the version that expects a NULL-terminated input, and extend the buffer by a byte to allow space for a null-terminator. In the case of decrypt, we need to add the null ourself. Fixes https://github.com/vector-im/vector-web/issues/2078.
2016-09-04OlmSession.has_received_messageRichard van der Hoff
I find myself wanting to know if an OlmSession is in the pre-key state or not, to help debugging at the application level.
2016-09-01Fix Ed25519 keypair generationRichard van der Hoff
Ed25519 private keys, it turns out, have 64 bytes, not 32. We were previously generating only 32 bytes (which is all that is required to generate the public key), and then using the public key as the upper 32 bytes when generating the per-message session key. This meant that everything appeared to work, but the security of the private key was severely compromised. By way of fixes: * Use the correct algorithm for generating the Ed25519 private key, and store all 512 bits of it. * Update the account pickle format and refuse to load the old format (since we should consider it compromised). * Bump the library version, and add a function to retrieve the library version, so that applications can verify that they are linked against a fixed version of the library. * Remove the curve25519_{sign, verify} functions which were unused and of dubious quality.
2016-07-06JS: make sure returned strings are null-terminatedRichard van der Hoff
It turns out that the 'length' argument to 'Pointer_stringify' doesn't work if the input includes characters >= 128. Rather than try to figure out which methods can return UTF-8, and which always return plain ascii, replace all uses of Pointer_stringify with a 'length' argument with the version that expects a NULL-terminated input, and extend the buffer by a byte to allow space for a null-terminator. In the case of decrypt, we need to add the null ourself. Fixes https://github.com/vector-im/vector-web/issues/1719.
2016-05-16Remove vestiges of loggingRichard van der Hoff
Remove the (now non-functional) declarations of olm_set_log_level in the C and js wrappers.
2016-04-26Add a basic logging implementationRichard van der Hoff
2015-08-04Add sha256 and ed25519_verify methods to javascript bindingsMark Haines
2015-07-21Fix javascript bindings: matches_inbound doesn't take an account argumentMark Haines
2015-07-17Add remove_one_time_keys to the javascript bindingsMark Haines
2015-07-16Add method getting a session id. Update the python and javascript bindingsMark Haines
2015-07-14Tweak the javascript bindings so that they will work with Node.jsMark Haines
2015-07-10Output simpler JSON for the account keys, don't sign the JSON but instead ↵Mark Haines
provide a olm_account_sign method so that the user of the library can sign the JSON themselves
2015-07-09Add c bindings for the methods for managing one time keysMark Haines
2015-07-08Don't pass a key id when creating a new outbound sessionMark Haines
2015-07-08Update the javascript bindings and demo to match the format of the identity ↵Mark Haines
key JSON
2015-06-27Rename axolotlpp as olm to avoid confusion with Axolotl-the-spec and ↵Matthew Hodgson
Axolotl-the-OWS-libraries at moxie's request