From: Robert Sesek <rsesek@google.com>
Date: Mon, 11 Jun 2012 19:39:38 +0000 (-0400)
Subject: Clamp to maximum password length
X-Git-Url: https://src.bluestatic.org/?a=commitdiff_plain;h=0189a25b685608a2d01feabbed60e240c8375c3f;p=skeletonkey.git

Clamp to maximum password length
---

diff --git a/core.js b/core.js
index 7830546..fa34dd2 100644
--- a/core.js
+++ b/core.js
@@ -89,8 +89,14 @@ SkeletonKey.prototype._onGenerate = function(e) {
   // |key| is a WordArray of 32-bit words.
   var key = CryptoJS.PBKDF2(this._master.value, salt,
       {keySize: this.KEYSIZE, iterations: this.ITERATIONS});
+
   var hexString = key.toString();
   hexString = this._capitalizeKey(hexString);
+
+  var maxLength = this._options.getMaximumPasswordLength();
+  if (hexString.length > maxLength)
+    hexString = hexString.substr(0, maxLength);
+
   this._password.value = hexString;
   this._selectPassword();
 };