On 4/23/2015 6:26 AM, Herbert Xu wrote: > Hi: > > It looks like our IPsec implementations of CCM and GCM are buggy This applies also to GMAC (rfc4543), right? > in that they don't include the IV in the authentication calculation. > > This definitely breaks interoperability with anyone who implements > them correctly. The fact that there have been no reports on this > probably means that nobody has run into this in the field yet. Does this mean that even the test vectors (crypto/testmgr.h) are broken? Thanks, Horia -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
