possible rijndael bug
lg
zevlg at yandex.ru
Wed Sep 17 01:52:48 PDT 2003
> vlm> Absolutely NOT.
> vlm> According to RFC1423 and FIPS81, the padding length may be somewhere
> vlm> in between 1 to 16 bytes, which translated into
> vlm> if(padLen < 0 || padLen >= 16)
> vlm> for this particular code.
> Ah, yes. Then, `assert(padLen > 0 && padLen <= 16)'; should be wrong.
The thing is that our padLen is not real padlen it is the (BlockSize-realpadlen), and since
BlockSize is 16 and realpadlen is in [0, 16) range(as vlm writes) than our padLen will be
in (0, 16] range.
> Sincerely,
More information about the freebsd-hackers
mailing list