On Mon, Jun 25, 2007 at 05:13:58PM -0500, Joy Latten (latten@xxxxxxxxxxxxxx) wrote: > I have been reading IP Encapsulating Payload-(ESP) RFC4303 where use of > combined mode algorithms are mentioned and accommodated for. > In trying to determine how I should handle this, I examined the > crypto code and could not readily recognize any combined mode > algorithms. Are there any current plans to implement combined mode > algorithms? I think it should be first supported by ipsec stack at least with state, where SA cold be configured, integrity check for the data/header is not a problem after that changes are stable. sha1/encryption is a poor man's combined algo after all with hash data being ICV :) -- Evgeniy Polyakov - To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
