Hi Everyone, Austin Clifton found a bug in our ChaCha AVX implementation. C++, SSE2, NEON, ASIMD, and PowerPC are OK. The bug was due to mishandling a carry. Master is now fixed. It was tracked at https://github.com/weidai11/cryptopp/issues/1069.
We need to know the impact on folks to determine if we need a BuggyChaCha class to undo the bad encryption. I don't think it will effect secure channels since they are temporary (they have a finite time-to-live). The bug could effect data in storage (they have an infinite time-to-live). Please test Master when you have some time. If you have problems, then please report back to us. Jeff -- You received this message because you are subscribed to the Google Groups "Crypto++ Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to cryptopp-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/cryptopp-users/aeacb6aa-151d-427c-8a52-58f314302b6en%40googlegroups.com.
