[gnutls-devel] GnuTLS | nettle: check validity of (EC)DH shared secret before export (!1299)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Sat Jul 18 08:47:20 CEST 2020

Daiki Ueno commented on a discussion: https://gitlab.com/gnutls/gnutls/-/merge_requests/1299#note_381659020

@smuellerDD Stephan, this is turning to be more complicated than anticipated, because of the API boundary between nettle and gnutls.  Specifically, nettle doesn't expose meta information such as curve order from the ECC API, and it cannot represent infinity point on curves. 

I've worked those around by hard-coding the curve orders and using the group law that adding opposite points results in an infinity point.  Could you check if those are acceptable?

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1299#note_381659020
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200718/d1894ab0/attachment.html>

More information about the Gnutls-devel mailing list