data too large for key size

Question

data too large for key size

hlogmans opened this issue 9 years ago · 5 comments

I had a brilliant idea, using Chamber to contain also the SSL certificate & key encrypted, because I deploy with capistrano including Nginx setup.

But... When using a multiline YML-string, above error pops up. It is an OpenSSL error, because assymetric encryption should only be done on small data (mostly only a symmetric key). Did I overlook an option to make this possible with Chamber, or should I try to assemble a PR to do symmetric encryption for larger objects?

hlogmans commented 9 years ago

See #39.

Answer 1 · 2015-09-18T16:58:54.000Z

Nope there's no hidden option. I'm open to a PR though. :)

Answer 2 · 2015-09-19T05:45:21.000Z

I'll give it a thought. There is a PKCS-format that does exactly this, but it adds quite some overhead. But standards in security are very valuable and OpenSSL supports this out of the box. But it is probably needed anyway because when I googled the errors, many people were running into this issue with Rails secret tokens that were too long...

Answer 3 · 2015-09-22T16:34:36.000Z

@hlogmans excellent! I'll refactor that and get it merged in a few days. 😄

Answer 4 · 2020-12-28T23:01:46.000Z

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.