[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Glitch in section 3.2
> > Florian Weimer, <Florian.Weimer@xxxxxxxxxxxxxxxxxxxx>, writes:
> > > I think it's worthwhile to point out that MPIs with an arbitrary
> > > number of leading zeroes might legitimately occur inside V3 secret key
> > > packets. Perhaps it's even necessary to amend section 5.5.3 to
> > > clarify this issue (i.e. that leading zeroes MUST NOT be stripped in
> > > this case).
> No, the cause is completely different. The unencrypted actual MPI
> determines the bit length and should not include any leading zeroes,
> but encryption might introduce them (and it's probably not wise to
> adjust the bit length accordingly).
Oh, I see what you mean. I don't think they should be considered
MPIs while in the encrypted state. They are encrypted MPI values.
Even though the bit length prefix is left in the clear, they are not to
be interpreted as MPIs until after decrypting.