On Fri, Apr 14, 2023 at 11:34:37AM +0100, David Howells wrote: > > In krb5, for encryption, there are two keys, not one, and no IV to be passed > in. The code I have will insert a confounder and a checksum, which must have > space allowed for it. Two keys is not an issue. Authenc for example supports two keys by encoding them into a single byte-stream. AEAD also supports having no IVs by providing IV generators (see seqiv, eseqiv, etc.). Cheers, -- Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
