On Wed, Mar 20, 2013 at 06:46:34PM -0500, Kim Phillips wrote: > On Wed, 20 Mar 2013 16:31:38 +0200 > Horia Geanta <horia.gea...@freescale.com> wrote: > > > This reverts commit e763eb699be723fb41af818118068c6b3afdaf8d. > > > > Current IPsec ESN implementation for authencesn(cbc(aes), hmac(sha)) > > (separate encryption and integrity algorithms) does not conform > > to RFC4303. > > > > ICV is generated by hashing the sequence > > SPI, SeqNum-High, SeqNum-Low, IV, Payload > > instead of > > SPI, SeqNum-Low, IV, Payload, SeqNum-High. > > > > Cc: <sta...@vger.kernel.org> # 3.8, 3.7 > > Reported-by: Chaoxing Lin <chaoxing....@ultra-3eti.com> > > Signed-off-by: Horia Geanta <horia.gea...@freescale.com> > > --- > > Reviewed-by: Kim Phillips <kim.phill...@freescale.com>
Both patches applied to crypto. Thanks! -- Email: Herbert Xu <herb...@gondor.apana.org.au> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html