libotr-ng icon indicating copy to clipboard operation
libotr-ng copied to clipboard

Published 20 hours ago verified publisher icon otrv4

Check the smp and auth generation of scalars

Open claucece opened this issue 6 years ago • 5 comments

They should all be hashed and pruned.

claucece avatar Dec 10 '18 20:12 claucece

Ok, this needs an email to be sent to Mike. Basically, my concern is:

  HashToScalar(0x05 || G3 * r5 || G * r5 + G2 * r6)

should that scalar be hashed as well? It does not come from randomness; but from fixed values.

claucece avatar Dec 18 '18 17:12 claucece

I thought Ian in our call was pretty clear that you can't modify the scalar output of that - or did I misunderstand?

olabini avatar Dec 19 '18 10:12 olabini

OK, so I was mistaken. @claucece said in offline conversations that this is different. It's blocked waiting on input from Mike.

olabini avatar Mar 10 '19 19:03 olabini

Yeah @olabini . Also Gustavo is looking into this :)

claucece avatar Mar 11 '19 01:03 claucece

Great!

olabini avatar Mar 11 '19 13:03 olabini