RFR: 8264329: Z cannot be 1 for Diffie-Hellman key agreement [v2]
Xue-Lei Andrew Fan
xuelei at openjdk.java.net
Sun Mar 28 20:41:56 UTC 2021
> Per NIST SP 800-56A Rev 3 (section 5.7.1), the shared secret cannot be 1 or (p - 1). This update adds this validation in the JDK provider implementation.
>
> No new regression test, simple update and hard to construct a shared secret of 1 or (p - 1).
Xue-Lei Andrew Fan has updated the pull request incrementally with one additional commit since the last revision:
typo correction and more
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/3232/files
- new: https://git.openjdk.java.net/jdk/pull/3232/files/7b05c3a2..0dc833ce
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=3232&range=01
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=3232&range=00-01
Stats: 3 lines in 1 file changed: 1 ins; 0 del; 2 mod
Patch: https://git.openjdk.java.net/jdk/pull/3232.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/3232/head:pull/3232
PR: https://git.openjdk.java.net/jdk/pull/3232
More information about the security-dev
mailing list