RT @dgryski: [security] Vulnerability in http://golang.org/x/crypto/salsa20 …
"If more than 256 GiB of keystream is generated [...] the amd64 implementation will first generate incorrect output, and then cycle back to previously generated keystream."
https://groups.google.com/forum/#!topic/golang-dev/1X7VG7FDw2A …
#golang
Encrypting large files as a single message that can be way over 2 GiB. It’s a terrible idea, but people do that.
-
-
Terrible idea to use an AEAD that way; insanely terrible to use an SPRP that way.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.