Re: [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API
From: David Howells <dhowells@xxxxxxxxxx>
Date: Fri, 17 Jan 2025 08:30:16 +0000
Cc: dhowells@xxxxxxxxxx, Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>, Chuck Lever <chuck.lever@xxxxxxxxxx>, Trond Myklebust <trond.myklebust@xxxxxxxxxxxxxxx>, "David S. Miller" <davem@xxxxxxxxxxxxx>, Marc Dionne <marc.dionne@xxxxxxxxxxxx>, Eric Dumazet <edumazet@xxxxxxxxxx>, Jakub Kicinski <kuba@xxxxxxxxxx>, Paolo Abeni <pabeni@xxxxxxxxxx>, Simon Horman <horms@xxxxxxxxxx>, linux-crypto@xxxxxxxxxxxxxxx, linux-afs@xxxxxxxxxxxxxxxxxxx, linux-nfs@xxxxxxxxxxxxxxx, linux-fsdevel@xxxxxxxxxxxxxxx, netdev@xxxxxxxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx
In-reply-to: <477969.1737101629@warthog.procyon.org.uk>
Organization: Red Hat UK Ltd. Registered Address: Red Hat UK Ltd, Amberley Place, 107-111 Peascod Street, Windsor, Berkshire, SI4 1TE, United Kingdom. Registered in England and Wales under Company Registration No. 3798903
References: <477969.1737101629@warthog.procyon.org.uk> <Z4Ds9NBiXUti-idl@gondor.apana.org.au> <20250110010313.1471063-1-dhowells@redhat.com> <20250110010313.1471063-3-dhowells@redhat.com>

David Howells <dhowells@xxxxxxxxxx> wrote:

> > rfc8009 is basically the same as authenc.
> 
> Actually, it's not quite the same :-/
> 
> rfc8009 chucks the IV from the encryption into the hash first, but authenc()
> does not.  It may be possible to arrange the buffer so that the assoc data is
> also the IV buffer.

Actually actually, it's the starting IV, so I just need to chuck in a block of
zeroes.

David

References:
- Re: [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API
  - From: David Howells
- Re: [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API
  - From: Herbert Xu
- [RFC PATCH 0/8] crypto: Add generic Kerberos library with crypto as AEAD algorithms
  - From: David Howells
- [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API
  - From: David Howells

Prev by Date: Re: [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API
Next by Date: Re: [PATCH v5 -next 11/16] sunrpc: simplify rpcauth_cache_shrink_count()
Previous by thread: Re: [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API
Next by thread: [RFC PATCH 4/8] rxrpc: Add the security index for yfs-rxgk
Index(es):
- Date
- Thread

[Index of Archives] [Linux Filesystem Development] [Linux USB Development] [Linux Media Development] [Video for Linux] [Linux NILFS] [Linux Audio Users] [Yosemite Info] [Linux SCSI]