On Sun, Jul 09, 2006 at 10:47:54PM +0200, Peter Philipp wrote: > I'm talking about this: > > for (i = 0; i < AESCTR_BLOCKSIZE; i++) > data[i] ^= keystream[i];
Hm, I'm not familiar with OpenBSD's crypto layer, but CTR mode should not require padding. Perhaps its a limitation of the APIs? > Why is there a AESCTR_BLOCKSIZE? Pardon my ignorance on this cipher, cipher > mode and implementation in OpenBSD's kernel. Any provided "official" stream > cipher would beat a simple XOR. Stream ciphers typically use a simple XOR.
