On Wed, Mar 20, 2013 at 06:46:34PM -0500, Kim Phillips wrote:
> On Wed, 20 Mar 2013 16:31:38 +0200
> Horia Geanta <horia.gea...@freescale.com> wrote:
> 
> > This reverts commit e763eb699be723fb41af818118068c6b3afdaf8d.
> > 
> > Current IPsec ESN implementation for authencesn(cbc(aes), hmac(sha))
> > (separate encryption and integrity algorithms) does not conform
> > to RFC4303.
> > 
> > ICV is generated by hashing the sequence
> > SPI, SeqNum-High, SeqNum-Low, IV, Payload
> > instead of
> > SPI, SeqNum-Low, IV, Payload, SeqNum-High.
> > 
> > Cc: <sta...@vger.kernel.org> # 3.8, 3.7
> > Reported-by: Chaoxing Lin <chaoxing....@ultra-3eti.com>
> > Signed-off-by: Horia Geanta <horia.gea...@freescale.com>
> > ---
> 
> Reviewed-by: Kim Phillips <kim.phill...@freescale.com>

Both patches applied to crypto.  Thanks!
-- 
Email: Herbert Xu <herb...@gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
--
To unsubscribe from this list: send the line "unsubscribe linux-crypto" in
the body of a message to majord...@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Reply via email to