On Sat, Jan 25, 2020 at 07:39:58PM -0700, Theo Buehler wrote: > CVSROOT: /cvs > Module name: src > Changes by: t...@cvs.openbsd.org 2020/01/25 19:39:58 > > Modified files: > lib/libcrypto/evp: e_chacha.c > > Log message: > Adjust EVP_chacha20()'s behavior to match OpenSSL's semantics: > The new IV is 128 bit long and is actually the 64 bit counter followed > by 64 the bit initialization vector. This is needed by an upcoming
Correction: 32 bit counter followed by 96 bit initialization vector. > change in OpenSSH and is a breaking change for all current callers. > There are language bindings for Node.js, Rust and Erlang, but none of > our ports use them. > > Note that EVP_chacha20() was first introduced in LibreSSL on May 1, 2014 > while the entirely incompatible version in OpenSSL was committed on > Dec 9, 2015. > > Initial diff from djm and myself, further refinements by djm. > Ports grepping by sthen > > ok jsing >