| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20150602091543.GA3140@w1.fi> Date: Tue, 2 Jun 2015 12:15:43 +0300 From: Jouni Malinen <j@...fi> To: Stephan Mueller <smueller@...onox.de> Cc: Johannes Berg <johannes@...solutions.net>, Herbert Xu <herbert@...dor.apana.org.au>, Linux Crypto Mailing List <linux-crypto@...r.kernel.org>, netdev@...r.kernel.org, "David S. Miller" <davem@...emloft.net>, Marcel Holtmann <marcel@...tmann.org>, Steffen Klassert <steffen.klassert@...unet.com>, linux-wireless <linux-wireless@...r.kernel.org> Subject: Re: [PATCH 7/7] mac80211: Switch to new AEAD interface On Mon, Jun 01, 2015 at 05:36:58PM +0200, Stephan Mueller wrote: > Am Montag, 1. Juni 2015, 16:35:26 schrieb Johannes Berg: > >IOW, I think something like this would make sense: > > That looks definitely cleaner :-) Indeed.. That AAD length-in-the-buffer design came from the over ten year old code that was optimized to cover the CCM construction with the same buffer and that was not cleaned up when this was converted to use cryptoapi couple of years ago. > Though, my main concern was just to ensure that the aad length value is not > zero. It won't be in IEEE 802.11 use cases. The exact length depends on the IEEE 802.11 frame type, but AAD is constructed in a way that it is normally a bit over 20 octets while allowing CCM to fit the related operations into two AES blocks. -- Jouni Malinen PGP id EFC895FA -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists