diff options
| author | Jacob Young <jacobly0@users.noreply.github.com> | 2024-11-02 02:45:12 -0400 |
|---|---|---|
| committer | Jacob Young <jacobly0@users.noreply.github.com> | 2024-11-07 20:25:26 -0500 |
| commit | 7afb2777250a251a065b8a970eb7f14e2d5b5ce2 (patch) | |
| tree | 90a778fca9e850330aa238748b7d830ee36a9127 /lib/std/Thread | |
| parent | 7f20c78c95d54e7fb0958693a9df2dee40dd99d6 (diff) | |
| download | zig-7afb2777250a251a065b8a970eb7f14e2d5b5ce2.tar.gz zig-7afb2777250a251a065b8a970eb7f14e2d5b5ce2.zip | |
std.crypto.tls: fix x25519_ml_kem768 key share
This is mostly nfc cleanup as I was bisecting the client hello to find
the problematic part, and the only bug fix ended up being
key_share.x25519_kp.public_key ++
key_share.ml_kem768_kp.public_key.toBytes()
to
key_share.ml_kem768_kp.public_key.toBytes() ++
key_share.x25519_kp.public_key)
and the same swap in `KeyShare.exchange` as per some random blog that
says "a hybrid keyshare, constructed by concatenating the public KEM key
with the public X25519 key". I also note that based on the same blog
post, there was a draft version of this method that indeed had these
values swapped, and that used to be supported by this code, but it was
not properly fixed up when this code was updated from the draft spec.
Closes #21747
Diffstat (limited to 'lib/std/Thread')
0 files changed, 0 insertions, 0 deletions