Hi Stephan, It seems now AEAD encryption operation also returns AAD to user space in output buffer. Following comment in aead_recvmsg() needs updation: /* 373 * AEAD memory structure: For encryption, the tag is appended to the 374 * ciphertext which implies that the memory allocated for the ciphertext 375 * must be increased by the tag length. For decryption, the tag 376 * is expected to be concatenated to the ciphertext. The plaintext 377 * therefore has a memory size of the ciphertext minus the tag length. 378 * 379 * The memory structure for cipher operation has the following 380 * structure: 381 * AEAD encryption input: assoc data || plaintext 382 * AEAD encryption output: cipherntext || auth tag 383 * AEAD decryption input: assoc data || ciphertext || auth tag 384 * AEAD decryption output: plaintext 385 */ Regards Harsh Jain -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html