On Thu, Aug 11, 2011 at 01:26:39PM +0200, Steffen Klassert wrote: > Most crypto algorithms simply take the priority value of the underlying > algorithm and add some value to calculate the algorithms priority. > The only exeptions are the authenc algorithms. We change the authenc > algorithms to calculate their priority to the sum of the underlying > algorithms plus 100. With this we can keep the priority consistent if > one of the underlying algorithms changes the priority. > > Signed-off-by: Steffen Klassert <steffen.klassert@xxxxxxxxxxx> Actually the reason it places a bigger weight on the cipher's priority is because typically ciphers are slower than hashes. So this is expressing the fact that we'd rather use a faster cipher with a slower hash than the other way around. Do you have a particular scenario in mind where this is broken? Thanks, -- Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
