PassphrasePrompt.cs: Add a warning for new non-ASCII passwords.

See #78. The loop is based on https://cs.opensource.google/go/go/+/refs/tags/go1.23.3:src/crypto/subtle/constant_time.go;l=58 and https://learn.microsoft.com/en-us/dotnet/api/system.text.ascii.isvalid?view=net-8.0#system-text-ascii-isvalid(system-byte).
samuel-lucas6 · Nov 23, 2024 · 8340d60 · 8340d60
1 parent 9ff866a
commit 8340d60
Showing 1 changed file with 11 additions and 2 deletions.
diff --git a/src/Kryptor/UI/PassphrasePrompt.cs b/src/Kryptor/UI/PassphrasePrompt.cs
@@ -28,12 +28,21 @@ public static class PassphrasePrompt
 {
     public static Span<byte> GetNewPassphrase(Span<byte> passphrase)
     {
-        return passphrase.Length switch
+        passphrase = passphrase.Length switch
         {
             0 => EnterNewPassphrase(),
-            1 when ConstantTime.Equals(passphrase, Encoding.UTF8.GetBytes(" ")) => UseRandomPassphrase(),
+            1 when ConstantTime.Equals(passphrase, " "u8) => UseRandomPassphrase(),
             _ => passphrase
         };
+        const int maxAscii = 127;
+        bool lessThanEqualTo = true;
+        foreach (byte b in passphrase) {
+            lessThanEqualTo &= Convert.ToBoolean(((b - maxAscii - 1) >> 31) & 1);
+        }
+        if (!lessThanEqualTo) {
+            DisplayMessage.WriteLine("WARNING: Using non-ASCII characters in a passphrase may cause problems decrypting files/private keys.", ConsoleColor.DarkYellow);
+        }
+        return passphrase;
     }
 
     private static Span<byte> EnterNewPassphrase()