diff options
author | Matthias Schiffer <mschiffer@universe-factory.net> | 2012-09-14 03:49:27 +0200 |
---|---|---|
committer | Matthias Schiffer <mschiffer@universe-factory.net> | 2012-09-14 03:49:27 +0200 |
commit | 3b67cdb32fd2b8272a50f803f92311bcc556b7ba (patch) | |
tree | 4f8935d12b0b97cb50feb4f3e005b3f4ddb68ce8 /src/method_xsalsa20_poly1305.c | |
parent | 04cd3761f1066e43520201e166cd41bf116f3485 (diff) | |
download | fastd-3b67cdb32fd2b8272a50f803f92311bcc556b7ba.tar fastd-3b67cdb32fd2b8272a50f803f92311bcc556b7ba.zip |
Critical: fix various problems in the AES128-GCM method
There were several bugs in the code that were severely lowering the expected
security and completely breaking compatiblity with alternative implementations.
The fixed version is checked against the test vectors specified in [1], and
should thus be correct.
[1] http://csrc.nist.gov/groups/ST/toolkit/BCM/documents/proposedmodes/gcm/gcm-revised-spec.pdf
Diffstat (limited to 'src/method_xsalsa20_poly1305.c')
0 files changed, 0 insertions, 0 deletions