On 27/06/14 16:18, Florent Daigniere wrote: > On Fri, 2014-06-27 at 16:03 +0100, Matthew Toseland wrote: >> Re AEAD buckets ... generally authenticated ciphers use a "tag" at the >> end, equivalent to an HMAC. This means that if there is corruption we >> will only detect it at the end. In turn this means that *we can't use >> Closer.close() on authenticated temp buckets!* (We do IIRC) >> >> Does this require any action? > Yes, this is bad. We should close() the input stream before > Closer.close() to ensure we do get any authentication failure related > exception! I think we do in filter code but I'm not sure we do everywhere. Somebody should look into this.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Devl mailing list [email protected] https://emu.freenetproject.org/cgi-bin/mailman/listinfo/devl
