chore: Merge branch 'release/v12.0.1'

Cosmian · Jul 20, 2023 · 8e79aaf · 8e79aaf
2 parents 153ce22 + 88a774d
commit 8e79aaf
Show file tree

Hide file tree

Showing 3 changed files with 12 additions and 5 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -2,6 +2,12 @@
 
 All notable changes to this project will be documented in this file.
 
+## [12.0.1] - 2023-07-19
+
+### Changed
+
+- patched kyber seed security issue
+
 ## [12.0.0] - 2023-07-11
 
 ### Changed

diff --git a/Cargo.toml b/Cargo.toml
@@ -1,18 +1,18 @@
 [package]
 name = "cosmian_cover_crypt"
-version = "12.0.0"
+version = "12.0.1"
 authors = [
   "Théophile Brezot <[email protected]>",
   "Bruno Grieder <[email protected]>",
 ]
 documentation = "https://docs.rs/cosmian_cover_crypt/"
 edition = "2021"
-license = "MIT/Apache-2.0"
+license-file = "LICENSE.md"
 repository = "https://github.com/Cosmian/cover_crypt"
 description = "Key Policy attribute encryption based on subset cover"
 
 [lib]
-crate-type = ["rlib", "cdylib", "staticlib"]
+crate-type = ["lib", "cdylib", "staticlib"]
 name = "cosmian_cover_crypt"
 # The cdylib is only interesting if the `--features ffi` flag is set on build
 # This does not seem to be actionable conditionally https://github.com/rust-lang/cargo/issues/4881

diff --git a/src/core/primitives.rs b/src/core/primitives.rs
@@ -134,8 +134,9 @@ pub fn encaps(
             xor_in_place(&mut e_i, &seed);
             if let Some(pk_i) = pk_i {
                 let mut epq_i = [0; KYBER_INDCPA_BYTES];
-                // TODO TBZ: which coin to use ?
-                indcpa_enc(&mut epq_i, &e_i, pk_i, &[0; KYBER_SYMBYTES]);
+                let mut coin = Zeroizing::new([0; KYBER_SYMBYTES]);
+                rng.fill_bytes(&mut *coin);
+                indcpa_enc(&mut epq_i, &e_i, pk_i, &*coin);
                 encs.insert(KeyEncapsulation::HybridEncapsulation(Box::new(epq_i)));
             } else {
                 encs.insert(KeyEncapsulation::ClassicEncapsulation(Box::new(e_i)));