]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e0dc31a) | patch
Revert "crypto: caam - add IPsec ESN support"
authorHoria Geanta <horia.geanta@freescale.com>
Wed, 20 Mar 2013 14:31:58 +0000 (16:31 +0200)
committerHerbert Xu <herbert@gondor.apana.org.au>
Thu, 21 Mar 2013 09:36:03 +0000 (17:36 +0800)
commit56a3c45ccc3a15f732d1ce498f8b1b08859e6823
treec63c3a43a262f3bbb15dfe5696bd2a17bd03b610tree | snapshot
parente0dc31af02e406329972c5a6295bdf0c187081a4commit | diff
Revert "crypto: caam - add IPsec ESN support"

This reverts commit d5e3667fe95a31bcc0c63668eeb0b4374475b413.

Current IPsec ESN implementation for authencesn(cbc(aes), hmac(sha))
(separate encryption and integrity algorithms) does not conform
to RFC4303.

ICV is generated by hashing the sequence
SPI, SeqNum-High, SeqNum-Low, IV, Payload
instead of
SPI, SeqNum-Low, IV, Payload, SeqNum-High.

Cc: <stable@vger.kernel.org> # 3.8, 3.7
Reported-by: Chaoxing Lin <Chaoxing.Lin@ultra-3eti.com>
Signed-off-by: Horia Geanta <horia.geanta@freescale.com>
Reviewed-by: Kim Phillips <kim.phillips@freescale.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
drivers/crypto/caam/caamalg.c diff | blob | history
drivers/crypto/caam/compat.h diff | blob | history
Linux Kernel Source Tree.