Comments (3)
I forgot to mention I'm using the 1.3.1 release of PolarSSL.
from mbedtls.
Thanks for your report! Indeed you're right, and reduction mod n
should be performed. This just got fixed in the internal development branch and will be in the next minor release.
I'm rather surprised you ran into this issue, since heuristically it seems to me it should happen roughly with probability 2^(-l/2) where l is the bit length of "the curve" (that is, of P or N), so it should be very unlikely with the kind of curve size used in cryptographic applications.
from mbedtls.
Updated in private branch ready for 1.3.2 release
from mbedtls.
Related Issues (20)
- ssl_client2 returns "HTTP/1.1 421 Misdirected Request" when making a GET request to https://ftp.debian.org HOT 1
- dynamic library, update from 3.4.0 to 3.5.1 , my program crashed with release version,debug version is ok?Is this a abi problem? HOT 3
- Study: Adapt "Mbed TLS feature support" configuration options for the crypto split
- Study: Adapt "System support" configuration options for the crypto split
- Implement Interruptible ECC Keypair Generation HOT 6
- Implement PSA Interruptible ECC (Raw) Key Agreement.
- Tests for PSA Interruptible ECC Keypair Generation.
- Tests for PSA Interruptible ECC Raw Key Agreement
- Replace `MBEDTLS_MD_CAN_MD5` and `MBEDTLS_MD_CAN_RIPEMD160` macros with its `PSA_WANT` counterpartarts
- Replace `MBEDTLS_MD_CAN_SHA224` with its `PSA_WANT` counterpartart
- Replace `MBEDTLS_MD_CAN_SHA256` with its `PSA_WANT` counterpartart
- Replace `MBEDTLS_MD_CAN_SHA384` with its `PSA_WANT` counterpartart
- Replace `MBEDTLS_MD_CAN_SHA512` with its `PSA_WANT` counterpartart
- Replace `MBEDTLS_MD_CAN_SHA3_*` with its `PSA_WANT` counterpartarts
- Client certificate verify HOT 1
- mbedtls_pk_sign_ext() returned -16000 (-0x3e80) HOT 1
- Do not perform adjustments on legacy crypto from PSA, when MBEDTLS_PSA_CRYPTO_CLIENT && !MBEDTLS_PSA_CRYPTO_C HOT 2
- Can't disable certificate verification with TLSv1.3 HOT 2
- MBEDTLS_ERR_SSL_RECEIVED_NEW_SESSION_TICKET breaks backwards-compatibility? HOT 1
- Clean up psk_list in ssl-opt.sh
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mbedtls.