On 9/16/19 6:02 PM, Christian Grothoff wrote: > It is not intended, but AFAIK also has no security implications. > Nevertheless, we should probably plan to fix the swap when we next break > compatibility.
Maybe not swapping, but adding a salt (as 2nd arg to hkdf) - that would be in line to the other usages (derive_h uses "key-derivation" as a salt, maybe even use that?) >Y< _______________________________________________ GNUnet-developers mailing list [email protected] https://lists.gnu.org/mailman/listinfo/gnunet-developers
