Re: more git updates..

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

Re: more git updates..

Horst H. von Brand
Bernd Eckenfels <[hidden email]> said:
> In article <[hidden email]> you wrote:
> > If something is likely to happen less than once in a billion years,
> > then for all practical purposes, it won't happen.

> Of course there are colliding files already available and easyly
> generate-able. So a malicous attack is already possible.

Care to share some? Of what you are smoking, that is... pretty potent stuff.
--
Dr. Horst H. von Brand                   User #22616 counter.li.org
Departamento de Informatica                     Fono: +56 32 654431
Universidad Tecnica Federico Santa Maria              +56 32 654239
Casilla 110-V, Valparaiso, Chile                Fax:  +56 32 797513
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [hidden email]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/
Reply | Threaded
Open this post in threaded view
|

Re: more git updates..

Theodore Ts'o
On Sun, Apr 24, 2005 at 06:38:13AM +0200, Bernd Eckenfels wrote:
> On Sat, Apr 23, 2005 at 09:13:26PM -0700, Paul Jackson wrote:
> > I don't believe you.  Reference?
>
> I had MD5 in mind, sorry. I havent seen the SHA-1 colision samples, yet.
> However it is likely to be available soon. (a simple pair with two files
> will be enugh to cause "theoretical" problems. However I think it would be
> possible to detect collisions on add and append sequence numbers... ugly.

The MD5 collision smaples are for two 16 byte inputs which when run
through the MD5 algorithm, result in the same 128-bit hash.  The SHA-1
collision samples are for two 20 byte inputs which when run through
the SHA algorithm create the same 160-bit hash.  In neither case will
the inputs be valid git objects, nor anything approaching ASCII text,
let alone valid C files.  

So what theoretical problems will be caused by this?  Sure, an
attacker can check a garbage file containing (apparently) random bytes
into git, and then produce another garbage file containing some
completely other (apparently) random bytes which will collide with the
first garbage file.  

You want to explain how this is going to cause problems in the git
systems?  And even if you can describe any problems, you want to
explain why any such theoretical problems couldn't be trivially
detected and fixed?

                                                - Ted
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [hidden email]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/
Reply | Threaded
Open this post in threaded view
|

Re: more git updates..

David Wagner
Theodore Ts'o  wrote:
>The MD5 collision smaples are for two 16 byte inputs which when run
>through the MD5 algorithm, result in the same 128-bit hash.  The SHA-1
>collision samples are for two 20 byte inputs which when run through
>the SHA algorithm create the same 160-bit hash.

There are no known SHA-1 collision samples.
(There are collision samples for MD5, and for SHA-0, but not for SHA-1.)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [hidden email]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/
Reply | Threaded
Open this post in threaded view
|

Re: more git updates..

Bernd Eckenfels-2
In reply to this post by Theodore Ts'o
On Mon, Apr 25, 2005 at 07:57:50AM -0400, Theodore Ts'o wrote:
> You want to explain how this is going to cause problems in the git
> systems?

No because I explained it does not cause Problems.

Greetings
Bernd

BTW: do you have an link to the SHA-1 collisions?
--
  (OO)      -- Bernd_Eckenfels@Mörscher_Strasse_8.76185Karlsruhe.de --
 ( .. )      ecki@{inka.de,linux.de,debian.org}  http://www.eckes.org/
  o--o     1024D/E383CD7E  eckes@IRCNet  v:+497211603874  f:+497211606754
(O____O)  When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [hidden email]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/