Page MenuHomeFreeBSD

Add a new COP_F_CIPHER_FIRST flag for struct crypt_op.
ClosedPublic

Authored by jhb on Jul 27 2017, 9:34 PM.
Tags
None
Referenced Files
Unknown Object (File)
Oct 26 2024, 10:01 AM
Unknown Object (File)
Oct 5 2024, 4:22 AM
Unknown Object (File)
Oct 4 2024, 11:27 AM
Unknown Object (File)
Oct 3 2024, 6:03 PM
Unknown Object (File)
Oct 3 2024, 12:21 PM
Unknown Object (File)
Sep 28 2024, 9:11 AM
Unknown Object (File)
Sep 27 2024, 7:48 AM
Unknown Object (File)
Sep 27 2024, 12:40 AM

Details

Summary

Add a new COP_F_CIPHER_FIRST flag for struct crypt_op.

This requests that the cipher be performed before rather than after
the HMAC when both are specified for a single operation.

Test Plan
  • testing IPSec-like encrypt-then-authenticate operations from userland via the cryptocheck tool on ccr0 and cryptosoft
  • encryption operations need this flag for EtA while decryption operations do not

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable