chiark / gitweb /
~mdw / tripe / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 13a5560) | patch
keyexch: Group element encodings must have constant length.
authorMark Wooding <mdw@distorted.org.uk>
Tue, 19 Sep 2006 20:47:33 +0000 (21:47 +0100)
committerMark Wooding <mdw@distorted.org.uk>
Tue, 19 Sep 2006 20:47:33 +0000 (21:47 +0100)
commit5251b2e9939493c088632a548fa61553ff53eae3
treebcd71845e96eedf15b712fa088e55573e7921828tree | snapshot
parent13a55605839046f6f42910de713f4a9b6c44dfd4commit | diff
keyexch: Group element encodings must have constant length.

SECURITY FIX.  COMPATIBILITY BREAK.

Using the `buf' encodings of group elements leaks length information.
Use the `raw' encoding instead.  I suspect that this really is a bad
security property to have; certainly the security proof for the key
exchange protocol depends on all encodings having the same length.
keyexch.c diff | blob | blame | history
Trivial IP Encryption: a simple VPN