CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2010/01/10 05:43:07
Modified files:
sys/arch/amd64/amd64: via.c
sys/arch/i386/i386: via.c
sys/arch/i386/pci: glxsb.c
sys/crypto : cryptodev.h cryptosoft.c cryptosoft.h xform.c
xform.h
sys/dev/pci : safe.c ubsec.c
sys/netinet : ip_ah.c ip_ah.h ip_esp.c ip_esp.h ip_ipsp.c
ip_ipsp.h ipsec_output.c
Log message:
Fix two bugs in IPsec/HMAC-SHA2:
(1) use correct (message) block size of 128 byte (instead of 64
bytes) for HMAC-SHA512/384 (RFC4634).
(2) RFC4868 specifies that HMAC-SHA-{256,384,512} is truncated to
nnn/2 bits, while we still use 96 bits. 96 bits have been
specified in draft-ietf-ipsec-ciph-sha-256-00 while
draft-ietf-ipsec-ciph-sha-256-01 changed it to 128 bits.
WARNING: this change makes IPsec with SHA-256 (the default)
incompatible with older OpenBSD versions and other IPsec-implementations
that share this bug.
ok+tests naddy, fries; requested by reyk/deraadt
