search for: md4s

...After reviewing the code in librsync, rsync and the original RSA implementation, I believe the bug is in rsync. It doesn't call mdfour_tail() when the last fragment is empty. Unfortunately this happens in the particularly common case of 700 + 4 = 64 * 11. The same bug occurs in both the block MD4s and the entire-file MD4. The bug is benign in the sense that it is on both sides so rsync works correctly. But it is possible (I am certainly not a crypto expert) that missing the trailing block (that includes the bit length) substantially weakens the computed MD4. The fix is easy: a couple of &...