[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Help-gnutls] segfault in internal function
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: [Help-gnutls] segfault in internal function |
Date: |
Wed, 27 Apr 2005 18:49:05 +0200 |
User-agent: |
KMail/1.7.2 |
On Wednesday 27 April 2005 18:19, you wrote:
> Hi,
>
> I've done :
> if (pad > ciphertext.size - hash_size) {
> gnutls_assert();
> /* We do not fail here. We check below for the
> * the pad_failed. If zero means success.
> */
> pad_failed = GNUTLS_E_DECRYPTION_FAILED;
> return pad_failed;
> }
I cannot include this in gnutls since it allows for information leakage to
attackers. The next version of gnutls will include this line:
> if (ver >= GNUTLS_TLS1 && pad_failed==0)
in the next test.
so it might be better to test this instead. What does you stress test
do? This problem was triggered by wrongly encrypted data.
--
Nikos Mavrogiannopoulos
- [Help-gnutls] segfault in internal function, Eric Leblond, 2005/04/11
- Re: [Help-gnutls] segfault in internal function, Nikos Mavrogiannopoulos, 2005/04/12
- Re: [Help-gnutls] segfault in internal function, Eric Leblond, 2005/04/13
- Re: [Help-gnutls] segfault in internal function, Nikos Mavrogiannopoulos, 2005/04/14
- Re: [Help-gnutls] segfault in internal function, Regit, 2005/04/27
- Message not available
- Re: [Help-gnutls] segfault in internal function, Regit, 2005/04/27
- Re: [Help-gnutls] segfault in internal function, Nikos Mavrogiannopoulos, 2005/04/27
- Re: [Help-gnutls] segfault in internal function, Regit, 2005/04/27
- Re: [Help-gnutls] segfault in internal function,
Nikos Mavrogiannopoulos <=
- Re: [Help-gnutls] segfault in internal function, Regit, 2005/04/27
- Re: [Help-gnutls] segfault in internal function, Nikos Mavrogiannopoulos, 2005/04/27