[gnutls-devel] GnuTLS | Document that the returned size by gnutls_cipher_get_iv_size() might not be the correct size for the nonce (#717)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Tue Feb 26 16:21:29 CET 2019
New Issue was created.
Issue 717: https://gitlab.com/gnutls/gnutls/issues/717
Author: Andreas Schneider
Assignee:
In case of AES-CCM 12 is returned, which is in most cases wrong.
The RFC states:
2. A nonce N of 15-L octets. Within the scope of any encryption key
K, the nonce value MUST be unique. That is, the set of nonce
values used with any given key MUST NOT contain any duplicate
values. Using the same nonce for two different messages
encrypted with the same key destroys the security properties of
this mode.
Valid values of L range between 2 octets and 8 octets
(the value L=1 is reserved).
So the documentation of the function should tell the user to check the RFC and implementation if the size is fixed or needs to be calculated differently!
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/717
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190226/d04d2a15/attachment.html>
More information about the Gnutls-devel
mailing list