On Fri, 2014-06-27 at 16:03 +0100, Matthew Toseland wrote: > Re AEAD buckets ... generally authenticated ciphers use a "tag" at the > end, equivalent to an HMAC. This means that if there is corruption we > will only detect it at the end. In turn this means that *we can't use > Closer.close() on authenticated temp buckets!* (We do IIRC) > > Does this require any action?
Yes, this is bad. We should close() the input stream before Closer.close() to ensure we do get any authentication failure related exception! Florent
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Devl mailing list Devl@freenetproject.org https://emu.freenetproject.org/cgi-bin/mailman/listinfo/devl
