[gnutls-devel] GnuTLS | cipher: add restriction on CCM tag length under FIPS mode (!1658)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Mon Oct 24 12:50:28 CEST 2022
Alexander Sosedkin commented on a discussion on lib/accelerated/aarch64/aes-ccm-aarch64.c: https://gitlab.com/gnutls/gnutls/-/merge_requests/1658#note_1146207567
> if (unlikely(encr_size < plain_size + tag_size))
> return gnutls_assert_val(GNUTLS_E_SHORT_MEMORY_BUFFER);
>
> + /* SP800-38C A.1 says Tlen must be a multiple of 16 between 32
> + * and 128, while B.2 says Tlen smaller than 64 should not be
> + * used under sufficient restriction.
> + */
> + switch (tag_size) {
> + case 4: case 6:
I'm confused now. Is asymmetry of approvedness (as of 1747e92b) between encryption and decryption intentional?
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1658#note_1146207567
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20221024/16f3f0dc/attachment.html>
More information about the Gnutls-devel
mailing list