Fix message type metadata leakage in websocket

4 years ago · b1bf1c73b9
1 changed files with 5 additions and 2 deletions
--- a/src/websockets.cpp
+++ b/src/websockets.cpp
@ -432,9 +432,12 @@ void AppDataServer::saveNonceHex(NonceType nt, QString noncehex) {

 // Encrypt an outgoing message with the stored secret key.
 QString AppDataServer::encryptOutgoing(QString msg) {
-    if (msg.length() % 256 > 0) {
-        msg = msg + QString(" ").repeated(256 - (msg.length() % 256));
+      int padding = 16*1024;
+    qDebug() << "Encrypt msg(pad="<<padding<<")  prepad len=" << msg.length();
+    if (msg.length() % padding > 0) {
+        msg = msg + QString(" ").repeated(padding - (msg.length() % padding));
    }
+    qDebug() << "Encrypt msg postpad len=" << msg.length();

    QString localNonceHex = getNonceHex(NonceType::LOCAL);