changelog

CHANGELOG.md

@@ -4,6 +4,12 @@
 All notable changes to this project will be documented in this file.
 This project adheres to [Semantic Versioning](http://semver.org/).
 
+## [1.1.4] 2024-09-26
+
+## Changes
+
+- In previous versions, if there was not enough entropy on the system, `securerandomstring` would throw an exception. Now it will retry to generate a random string until it succeeds, or the call stack becomes full.
+
 ## [1.1.0] 2017-12-26
 
 ### New Features

lib/secure-random-string.js

@@ -31,6 +31,9 @@ function srs(options, cb) {
 		} else {
 			string = string.replace(/\//g, '_').replace(/\+/g, '-');
 		}
+		if (string.length < length) {
+			return _finish(crypto.randomBytes(length));
+		}
 		return string.substr(0, length);
 	}
 };

package.json

@@ -1,6 +1,6 @@
 {
   "name": "secure-random-string",
-  "version": "1.1.2",
+  "version": "1.1.4",
   "description": "Generates a secure random string with a given length",
   "main": "lib/secure-random-string.js",
   "scripts": {
@@ -8,7 +8,7 @@
   },
   "repository": {
     "type": "git",
-    "url": "https://github.com/S2-/securerandomstring.git"
+    "url": "https://github.com/5im-0n/securerandomstring.git"
   },
   "keywords": [
     "crypto",
@@ -24,7 +24,7 @@
   ],
   "license": "MIT",
   "bugs": {
-    "url": "https://github.com/S2-/securerandomstring/issues"
+    "url": "https://github.com/5im-0n/securerandomstring/issues"
   },
-  "homepage": "https://github.com/S2-/securerandomstring"
+  "homepage": "https://github.com/5im-0n/securerandomstring"
 }

tests.js

@@ -68,6 +68,7 @@ srs({alphanumeric: true, length: 40}, function(err, sr) {;
 test('generate a random string 32 chars long (sync)', srs().length, 32);
 test('generate a random string 1 chars long (sync)', srs({length: 1}).length, 1);
 test('generate a random string 256 chars long (sync)', srs({length: 256}).length, 256);
+test('generate a random string 10 chars long (sync)', srs({length: 10}).length, 10);
 
 
 //in 2000 chars there should be at least one substitution