kmwebnet/se050-wireguard
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Remove incorrect datalen limit in HMAC-BLAKE2s

Browse Source 
Bug 15: Incorrect datalen check
- Removed: datalen > 64 check
- HMAC can handle arbitrary length data

However, testing revealed that se050_blake2s itself fails RFC 7693 test vectors:
- Empty message: Expected 69217a30..., Got 00000000...
- "abc": Expected ba80a53f..., Got 508c5e8c...

This is the ROOT CAUSE of the WireGuard packet encryption/decryption failures.
The blake2s implementation needs to be fixed first.

Test results: 28 passed, 4 failed (root cause identified)
This commit is contained in:
km
2026-03-28 21:00:12 +09:00
parent d5ca4b3634
commit 7c2c6d94bf
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/se050_hmac_blake2s.c
+1 -1
View File
@@ -19,7 +19,7 @@ int se050_hmac_blake2s(uint8_t out[32],
uint8_t inner_with_key[128]; uint8_t inner_with_key[128];
int i; int i;
if (!out || !key || keylen == 0 || !data || datalen > 64) { if (!out || !key || keylen == 0 || !data) {
return -1; return -1;
} }