Page MenuHomeFreeBSD

crypto: Support multiple nonce lengths for AES-CCM.
ClosedPublic

Authored by jhb on Sep 24 2021, 6:04 PM.
Tags
None
Referenced Files
Unknown Object (File)
Thu, Jun 25, 5:48 AM
Unknown Object (File)
Mon, Jun 22, 6:47 PM
Unknown Object (File)
Sun, Jun 21, 12:43 AM
Unknown Object (File)
Thu, Jun 18, 11:36 PM
Unknown Object (File)
May 30 2026, 3:30 PM
Unknown Object (File)
May 29 2026, 10:43 AM
Unknown Object (File)
May 28 2026, 2:18 PM
Unknown Object (File)
May 19 2026, 10:52 AM
Subscribers

Details

Summary

Permit nonces of lengths 7 through 13 in the OCF framework and the
cryptosoft driver. A helper function (ccm_max_payload_length) can be
used in OCF drivers to reject CCM requests which are too large for the
specified nonce length.

Sponsored by: Chelsio Communications, The FreeBSD Foundation

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
No Lint Coverage
Unit
No Test Coverage
Build Status
Buildable 41712
Build 38601: arc lint + arc unit

Event Timeline

The cryptosoft changes were tested both by cryptocheck and the updated crypotest.py at the end of the series that tested all the AES-CCM KAT vectors. Note that the KAT vectors also required later fixes for truncated tags, however, cryptocheck was able to verify variable nonce lengths with a 16 byte tag.

This revision is now accepted and ready to land.Sep 24 2021, 7:33 PM