On Tue, May 26, 2015 at 03:38:58PM +0800, Herbert Xu wrote: > On Tue, May 26, 2015 at 09:37:09AM +0200, Stephan Mueller wrote: > > > > - the current IKE implementations use rfc4106(gcm(aes)). They would need to > > use seqniv(rfc4106(gcm(aes))) depending on the kernel version. So, we have > > a > > clear change in the user space API where the old configuration even works > > (i.e. no error), but does not produce the correct encryption that is > > required. > > You mean through the user-space AEAD interface? That's not a problem > because I'm going to disable it for 4.1 :)
In fact it isn't a problem anyway because we never exported givencrypt to user-space so this interface never existed. -- Email: Herbert Xu <herb...@gondor.apana.org.au> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
