<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">
<html lang="en">
<head>
<meta content="text/html; charset=US-ASCII" http-equiv="Content-Type">
<title>
GitLab
</title>
<style>img {
max-width: 100%; height: auto;
}
</style>
</head>
<body>
<div class="content">
<div style="">
<blockquote dir="auto">
<p><a href="https://gitlab.com/nmav" data-user="105950" data-reference-type="user" data-container="body" data-placement="bottom" class="gfm gfm-project_member" title="Nikos Mavrogiannopoulos">@nmav</a> i am not sure we do not need the test, as y comes for the peer, so we should probably still check it in TLS1.3 ?</p>
</blockquote>
<p dir="auto">In TLS1.3 only safe groups are supported, and this check is about whether the public key is on the correct subgroup. That makes sense for general groups, but in safe groups there are only 3 subgroups, the one generated by <code>1</code>, by <code>-1</code> and by <code>q</code>. 1 generates itself only, and -1 generates itself and 1. Thus by the check that <code>1 < y < p-1</code> we already ensure that y is generated by none of these groups. The test on whether y is generated by <code>q</code> is now superfluous because there is no other subgroup but q.</p>
</div>
</div>
<div class="footer" style="margin-top: 10px;">
<p style="font-size: small; color: #777;">
—
<br>
Reply to this email directly or <a href="https://gitlab.com/gnutls/gnutls/merge_requests/990#note_171696297">view it on GitLab</a>.
<br>
You're receiving this email because of your account on gitlab.com.
If you'd like to receive fewer emails, you can
<a href="https://gitlab.com/sent_notifications/02f4f8a987f82c624570704e2cf2fd7b/unsubscribe">unsubscribe</a>
from this thread or
adjust your notification settings.
<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Merge request","url":"https://gitlab.com/gnutls/gnutls/merge_requests/990#note_171696297"}}</script>
</p>
</div>
</body>
</html>