Bug #3710

make key derivation use full unicode

Added by hans over 3 years ago. Updated over 3 years ago.

Status:NewStart date:09/04/2014
Priority:NormalDue date:
Assignee:-% Done:


Target version:future


A bug in Android's javax.crypto.SecretKeyFactory prevents it from using anything but the first 8-bits of any unicode character. For now, there is a workaround in place (#3664), but ideally cacheword would use all the bits from the password when deriving a key.

for more info:

Related issues

Related to CacheWord - Task #3664: handle PBKDF2WithHmacSHA1 changes in 4.4 New 08/22/2014
Related to IOCipher - Bug #3174: Expose password changing API in Java New 04/01/2014


#1 Updated by hans over 3 years ago

Also, this means that the resulting key will change, so that means that any SQLCipher or IOCipher databases will need to be rekeyed.

Also available in: Atom PDF