Owen Kirby writes:
> I've incorporated a few of your suggestions and updated my patch for the CCM
> cipher
> modes. This improves the API coverage in the CCM test suite, adds the
> all-at-once
> API for message processing, and fixes the copyright of the CCM mode source
> code.
Thanks!
> ---
On Sat, Mar 15, 2014 at 12:07 AM, Niels Möller wrote:
>
> > --- /dev/null
> > +++ b/ccm.c
> > +/* Pad an unaligned CBC-MAC digest with zero, or initialize B0 if no
> > adata. */
> > +static void
> > +ccm_pad(struct ccm_ctx *ctx, void *cipher, nettle_crypt_func *f)
> > +{
> > +if (ctx->blen) f
Owen Kirby writes:
> The Input to the CBC-MAC used in CCM mode takes the form:
> L(adata) | adata | padding | plaintext | padding
[...]
> In other words,
> blen is the length of data input to the CBC-MAC modulus the block size.
[...]
> Once we find the end of the adata (this is currently done
