Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 22 Dec 2016 19:13:39 +0100
From: "Jason A. Donenfeld" <>
To: Hannes Frederic Sowa <>
Cc: "Theodore Ts'o" <>,, 
	Andy Lutomirski <>, Netdev <>, 
	LKML <>, 
	Linux Crypto Mailing List <>, David Laight <>, 
	Eric Dumazet <>, Linus Torvalds <>, 
	Eric Biggers <>, Tom Herbert <>, 
	Andi Kleen <>, "David S. Miller" <>, 
	Jean-Philippe Aumasson <>
Subject: Re: Re: [PATCH v7 3/6] random: use SipHash in
 place of MD5

On Thu, Dec 22, 2016 at 7:08 PM, Hannes Frederic Sowa
<> wrote:
> I wasn't concerned about performance but more about DoS resilience. I
> wonder how safe half md4 actually is in terms of allowing users to
> generate long hash chains in the filesystem (in terms of length
> extension attacks against half_md4).

AFAIK, this is a real vulnerability that needs to be addressed.

Judging by Ted's inquiry about my siphash testing suite, I assume he's
probably tinkering around with it as we speak. :)

Meanwhile I've separated things into several trees:

1. chacha20 rng, already submitted:

2. md5 cleanup, not yet submitted:

3. md4 cleanup, already submitted:

4. siphash and networking, not yet submitted as a x/4 series:

I'll submit (4) in a couple of days, waiting for any comments on the
existing patch-set.


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.