Differential D22364

Add support for ESN in cryptosoft
ClosedPublic
Actions

Authored by jaz_semihalf.com on Nov 14 2019, 12:22 PM.

Tags

None

Referenced Files

	F132645269: D22364.id64311.diff
	Sat, Oct 18, 5:23 PM

	F132645263: D22364.id.diff
	Sat, Oct 18, 5:23 PM

	F132645261: D22364.id76979.diff
	Sat, Oct 18, 5:23 PM

	F132645259: D22364.id71769.diff
	Sat, Oct 18, 5:23 PM

	F132645257: D22364.id78302.diff
	Sat, Oct 18, 5:23 PM

	Unknown Object (File)
	Sat, Oct 18, 6:36 AM

	Unknown Object (File)
	Fri, Oct 17, 3:15 AM

	Unknown Object (File)
	Thu, Sep 25, 9:59 PM

Subscribers

Details

Reviewers

mw
wma
jmg
pdk_semihalf.com
jhb
trasz

Group Reviewers

security
secteam

Commits

rS366753: Add support for ESN in cryptosoft

Summary

This patch adds support for IPSec ESN (Extended Sequence Numbers) in
encrypt and authenticate mode (eg. AES-CBC and SHA256) and combined mode
(eg. AES-GCM).

For encrypt and authenticate mode the ESN is stored in separate crp_esn
buffer because the high-order 32 bits of the sequence number are
appended after the Next Header (RFC 4303).

For combined modes the high-order 32 bits of the sequence number [e.g.
RFC 4106, Chapter 5 AAD Construction] are part of crp_aad (prepared by
netipsec layer in case of ESN support enabled), therefore non visible
diff around combined modes.

Diff Detail

Lint

Lint Skipped

Unit

Tests Skipped

Event Timeline

pdk_semihalf.com created this revision.Nov 14 2019, 12:22 PM

Herald added a reviewer: jmg. · View Herald TranscriptNov 14 2019, 12:22 PM

Herald added a subscriber: imp. · View Herald Transcript

trasz resigned from this revision.Jan 14 2020, 2:32 PM

jaz_semihalf.com commandeered this revision.May 14 2020, 2:02 PM

jaz_semihalf.com added a reviewer: pdk_semihalf.com.

Align to new OCF

jaz_semihalf.com added a parent revision: D24838: Prepare crypto framework for IPSec ESN support.May 14 2020, 2:29 PM

jaz_semihalf.com updated this revision to Diff 76979.Sep 13 2020, 5:41 PM

jaz_semihalf.com retitled this revision from Implement support for ESN in cryptosoft to Add support for ESN in cryptosoft.

jaz_semihalf.com edited the summary of this revision. (Show Details)

jaz_semihalf.com added a reviewer: jhb.Sep 24 2020, 4:23 PM

jhb accepted this revision.Sep 24 2020, 10:19 PM

This revision is now accepted and ready to land.Sep 24 2020, 10:19 PM

Closed by commit rS366753: Add support for ESN in cryptosoft (authored by mw). · Explain WhyOct 16 2020, 11:18 AM

This revision was automatically updated to reflect the committed changes.

mw added a commit: rS366753: Add support for ESN in cryptosoft.

Revision Contents
Changeset List

Path

Size

sys/

opencrypto/

56 lines

Diff 71769

sys/opencrypto/cryptosoft.c

Loading...