On Wed, Feb 20, 2008 at 04:19:03PM +0300, Evgeniy Polyakov wrote: > > What iv generation scheme do you use? It looks like only gcm and ccm add > 16 bytes to cryptlen and set nbytes to them. Although they both install > two scatterlists for crypto operation: one for data and one for above > addition block of 16 bytes. > > Btw, Herbert, I've found a tiny typo in both ccm and gcm modules, which > do not set correct cra_aead.geniv name. Actually rfc4309/rfc4106 do need to use the seqiv generator. Also ccm/gcm are not IV generators so they can't be used in the geniv field. The geniv field is meant to contain an IV generator template that takes a block cipher which may lack a givencrypt function and produce a new block cipher with a givencrypt function. Cheers, -- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt - To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
