| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 25 Jul 2016 12:09:32 +0200 From: Sabrina Dubroca <sd@...asysnail.net> To: Davide Caratti <dcaratti@...hat.com> Cc: netdev@...r.kernel.org, "David S. Miller" <davem@...emloft.net>, Hannes Frederic Sowa <hannes@...essinduktion.org> Subject: Re: [PATCH net 0/3] macsec: fix configurable ICV length 2016-07-22, 15:07:55 +0200, Davide Caratti wrote: > This series provides a fix for macsec configurable ICV length. The > maximum length of ICV element has been made compliant to IEEE 802.1AE, > and error reporting in case of cipher suite configuration failure has been > improved. Finally, a test has been added to netlink verify() callback in > order to avoid creation of macsec interfaces having user-provided ICV length > values that are not supported by the cipher suite. > > Signed-off-by: Davide Caratti <dcaratti@...hat.com> > > Davide Caratti (3): > macsec: limit ICV length to 16 octets > macsec: fix error codes when a SA is created > macsec: validate ICV length on link creation > > drivers/net/macsec.c | 76 ++++++++++++++++++++++++++++-------------- > include/uapi/linux/if_macsec.h | 2 ++ > 2 files changed, 53 insertions(+), 25 deletions(-) Acked-by: Sabrina Dubroca <sd@...asysnail.net> -- Sabrina
Powered by blists - more mailing lists