[freenet-dev] Rijndael cipher broken
Florent Daignière (NextGen$)
nextgens at freenetproject.org
Tue Jan 9 17:24:51 UTC 2007
* Robert Hailey <freenet-devl at osndok.com> [2007-01-08 12:42:06]:
Hi!
> Please excuse me if this has already been addressed, I'm just now
> starting to dig into the freenet source.
>
> The encryption aspect interests me, but after writing a test program
> and testing various key/block sizes for Rijndael, I found that only
> the 128 bit block size appears to work as it stands in the SVN
> repository, yet everywhere that it is used in the rest of the source
> it is requested with a 256 blocksize.
>
> Apparently only due to not passing the blocksize into the key/encrypt/
> decrypt functions, it appears easy enough to fix (example patch
> included). My question is, why aren't these other classes which rely
> on Rijndael-256-block encryption broken? or are they, silently?
They were broken silently :S
Congratulation for catching that bug.
>
> If I'm missing something obvious, please do tell.
You are not ; we have been.
NextGen$
> --
> Robert Hailey
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://emu.freenetproject.org/pipermail/devl/attachments/20070109/20c880ef/attachment.pgp
More information about the Devl
mailing list