From owner-freebsd-arch@FreeBSD.ORG Sat Dec 11 21:00:29 2004 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EE85A16A4CF; Sat, 11 Dec 2004 21:00:29 +0000 (GMT) Received: from pd3mo2so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id C2D2E43D39; Sat, 11 Dec 2004 21:00:29 +0000 (GMT) (envelope-from colin.percival@wadham.ox.ac.uk) Received: from pd3mr6so.prod.shaw.ca (pd3mr6so-qfe3.prod.shaw.ca [10.0.141.21])2004)) with ESMTP id <0I8K00JTGT0TJCE0@l-daemon>; Sat, 11 Dec 2004 14:00:29 -0700 (MST) Received: from pn2ml10so.prod.shaw.ca ([10.0.121.80]) by pd3mr6so.prod.shaw.ca (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0I8K00BMOT0T23K0@pd3mr6so.prod.shaw.ca>; Sat, 11 Dec 2004 14:00:29 -0700 (MST) Received: from [192.168.0.60] (S0106006067227a4a.vc.shawcable.net [24.87.233.42])2003)) with ESMTP id <0I8K00L4TT0SLV@l-daemon>; Sat, 11 Dec 2004 14:00:29 -0700 (MST) Date: Sat, 11 Dec 2004 13:00:28 -0800 From: Colin Percival In-reply-to: <20041211201821.GA37211@VARK.MIT.EDU> To: David Schultz Message-id: <41BB5FEC.30100@wadham.ox.ac.uk> MIME-version: 1.0 Content-type: text/plain; format=flowed; charset=ISO-8859-1 Content-transfer-encoding: 7bit X-Accept-Language: en-us, en X-Enigmail-Version: 0.86.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime References: <41B92CF3.2090302@wadham.ox.ac.uk> <20041211020518.GA74718@dragon.nuxi.com> <41BA6BDE.5070909@wadham.ox.ac.uk> <20041211035012.GB93068@dragon.nuxi.com> <41BA702C.3010909@wadham.ox.ac.uk> <20041211201821.GA37211@VARK.MIT.EDU> User-Agent: Mozilla Thunderbird 0.9 (X11/20041107) cc: freebsd-arch@freebsd.org Subject: Re: Adding standalone RSA code X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Dec 2004 21:00:30 -0000 David Schultz wrote: > For > instance, as we discussed privately, your RSA encryption routine > is insecure unless the caller appropriately preprocesses the input > with a random pad ... or is using it to encode data with at least 128 bits of entropy... > and the documentation doesn't seem to mention > this caveat. I'm sure *you* know how to use your library > securely, but it could be dangerous to someone else. True enough, but I was planning on revising my interface (e.g., to use OAEP) and documentation before committing anyway. > That said, it still puzzles me that you don't want to use > OpenSSL's rsautl. I wrote my RSA code long before I started working on FreeBSD Update; so when I needed some code for signing my update index, I used the most convenient code -- the code which I had written, understood intimately, and trusted. Colin Percival