Re: Glitch in section 3.2

Florian Weimer, <Florian(_dot_)Weimer(_at_)RUS(_dot_)Uni-Stuttgart(_dot_)DE>, 
writes:

From the current draft:


| 3.2. Multi-Precision Integers

|    The length field of an MPI describes the length starting from its
|    most significant non-zero bit. Thus, the MPI [00 02 01] is not
|    formed correctly. It should be [00 01 01].

I think it's worthwhile to point out that MPIs with an arbitrary
number of leading zeroes might legitimately occur inside V3 secret key
packets.  Perhaps it's even necessary to amend section 5.5.3 to
clarify this issue (i.e. that leading zeroes MUST NOT be stripped in
this case).


Why is this?  Are you worried about leaking information about the size
of p, q, etc.?

Hal

<Prev in Thread]	Current Thread	[Next in Thread>
Glitch in section 3.2, Florian Weimer Re: Glitch in section 3.2, Werner Koch Re: Glitch in section 3.2, Florian Weimer Re: Glitch in section 3.2, hal <= Re: Glitch in section 3.2, Florian Weimer Re: Glitch in section 3.2, Michael Young Re: Glitch in section 3.2, Jon Callas Re: Glitch in section 3.2, hal Re: Glitch in section 3.2, Florian Weimer

Previous by Date:	Re: Glitch in section 3.2, Werner Koch
Next by Date:	Re: Glitch in section 3.2, Florian Weimer
Previous by Thread:	Re: Glitch in section 3.2, Florian Weimer
Next by Thread:	Re: Glitch in section 3.2, Florian Weimer
Indexes:	[Date] [Thread] [Top] [All Lists]