[MPlayer-dev-eng] Zattoo, AES, avutil

Reimar Döffinger Reimar.Doeffinger at stud.uni-karlsruhe.de
Mon Mar 12 20:52:38 CET 2007


Hello,
On Sun, Mar 11, 2007 at 10:03:16PM +0100, Michael Niedermayer wrote:
> On Sun, Mar 11, 2007 at 09:16:06PM +0100, Reimar Döffinger wrote:
> > On Sun, Mar 11, 2007 at 08:58:34PM +0100, Michael Niedermayer wrote:
> > > On Sun, Mar 11, 2007 at 05:31:47PM +0100, Vladimir Serbinenko wrote:
> > > > It's problematic to use AES from libavutil because it doesn't support
> > > > padding and padding is necessary for zattoo
> > > 
> > > well so add 3 lines of c code to your zatoo code to pad the last
> > > block
> > 
> > He is talking about OEAP, for which there only seems to be only the overly
> > complicated and incorrect mathematical paper http://www-cse.ucsd.edu/users/mihir/papers/oae.pdf
> > and some similarly overly complicated code as documentation.
> 
> hmm, then why dont you (or the author of the patch) explains it in a 
> few words?

Oh, sorry, I have no idea. I only read tiny parts of that paper and
another one that pointed out the errors in this one. And a bit of code
in openssl.
The point of it is avoiding some attacks on RSA, most obvious one being
that RSA-encrypting will not change 0 and 1.
But, I just realized that this is actually in RFC 2437 as EME-OAEP with
the "mask generating function" as the example on described in "10.2.1 MGF1".
After a quick look I think it's not quite as readable as some RFCs, but it's okay.

Greetings,
Reimar Döffinger



More information about the MPlayer-dev-eng mailing list