[OpenID] Random failures when validating signatures
Richard Davies
richard at richarddavies.us
Thu Nov 13 17:30:28 UTC 2008
Oh. Good suggestion. I have a btwoc() function to convert my integers
into strings, but I don't think I was paying particular attention to
how I was "unbtwoc()" the server_public value. I'll take a look at
that. Thanks.
On Nov 13, 9:22 am, Breno de Medeiros <br... at google.com> wrote:
>
> Sorry, that is not true. It does not apply to the nonce, but it would
> cause you to interpret the "server_public" value incorrectly, and
> compute the wrong mac key 50% of the time.
>
More information about the general
mailing list