Page MenuHomeFreeBSD

crypto: Support multiple nonce lengths for AES-CCM.

Authored by jhb on Sep 24 2021, 6:04 PM.



Permit nonces of lengths 7 through 13 in the OCF framework and the
cryptosoft driver. A helper function (ccm_max_payload_length) can be
used in OCF drivers to reject CCM requests which are too large for the
specified nonce length.

Sponsored by: Chelsio Communications, The FreeBSD Foundation

Diff Detail

R10 FreeBSD src repository
Automatic diff as part of commit; lint not applicable.
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

The cryptosoft changes were tested both by cryptocheck and the updated at the end of the series that tested all the AES-CCM KAT vectors. Note that the KAT vectors also required later fixes for truncated tags, however, cryptocheck was able to verify variable nonce lengths with a 16 byte tag.

This revision is now accepted and ready to land.Sep 24 2021, 7:33 PM