[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Behaviour with Null Bytes

To: Andrew Dunham <andrew@du.nham.ca>, scrypt@tarsnap.com
Subject: Re: Behaviour with Null Bytes
From: Colin Percival <cperciva@tarsnap.com>
Date: Tue, 08 Apr 2014 17:03:17 -0700
In-reply-to: <CADSBmCDM6h9wVu71cctD7mk6YBtQK3PYqVM7PLt_BrrAdP2CMQ@mail.gmail.com>
References: <CADSBmCDM6h9wVu71cctD7mk6YBtQK3PYqVM7PLt_BrrAdP2CMQ@mail.gmail.com>

Hi Andrew (& list),

On 04/08/14 16:15, Andrew Dunham wrote:
> I'm noticing an interesting behaviour, and I'm wondering if it's expected or
> not.  Specifically:
> 
>     crypto_scrypt(password, password_len, salt, salt_len, 1 << 14, 8, 1, out,
> out_len);
> 
> Is returning the same output for the inputs "password" (no null terminator) and
> "password\0" (including the null terminator).

This is a consequence of scrypt using the HMAC construction to process the
password.  It's unfortunate but not really a problem.

-- 
Colin Percival
Security Officer Emeritus, FreeBSD | The power to serve
Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid

Follow-Ups:
- Re: Behaviour with Null Bytes
  - From: Andrew Dunham <andrew@du.nham.ca>

References:
- Behaviour with Null Bytes
  - From: Andrew Dunham <andrew@du.nham.ca>

Prev by Date: Behaviour with Null Bytes
Next by Date: Re: Behaviour with Null Bytes
Previous by thread: Behaviour with Null Bytes
Next by thread: Re: Behaviour with Null Bytes
Index(es):
- Date
- Thread