Ben confirms that the MUST in rfc2631 is only for compatibility with X9.42, and isn...

author Nick Mathewson <nickm@torproject.org>

Thu, 18 Dec 2008 16:11:16 +0000 (16:11 +0000)

committer Nick Mathewson <nickm@torproject.org>

Thu, 18 Dec 2008 16:11:16 +0000 (16:11 +0000)
author Nick Mathewson <nickm@torproject.org>
Thu, 18 Dec 2008 16:11:16 +0000 (16:11 +0000)
committer Nick Mathewson <nickm@torproject.org>
Thu, 18 Dec 2008 16:11:16 +0000 (16:11 +0000)
diff --git a/src/common/crypto.c b/src/common/crypto.c

index f35620a7a6cfe37c6ae1f256dd2cf4412799e48c..fdccfe1d7b09071905b9d0fed84bf022e94f25ea 100644 (file)
--- a/src/common/crypto.c
+++ b/src/common/crypto.c
@@ -1643,13 +1643,6 @@ crypto_dh_compute_secret(crypto_dh_env_t *dh,
      goto error;
    }
    secret_len = result;
-  /* sometimes secret_len might be less than 128, e.g., 127. that's ok. -RD */
-  /* Actually, http://www.faqs.org/rfcs/rfc2631.html says:
-   *   Leading zeros MUST be preserved, so that ZZ occupies as many
-   *   octets as p. For instance, if p is 1024 bits, ZZ should be 128
-   *   bytes long.
-   * XXX021 What are the security implications here? -NM
-   */
    if (crypto_expand_key_material(secret_tmp, secret_len,
                                   secret_out, secret_bytes_out)<0)
      goto error;
author	Nick Mathewson <nickm@torproject.org>
	Thu, 18 Dec 2008 16:11:16 +0000 (16:11 +0000)
committer	Nick Mathewson <nickm@torproject.org>
	Thu, 18 Dec 2008 16:11:16 +0000 (16:11 +0000)