[openssl-dev] Circumstances cause CBC often to be preferred over GCM modes
Viktor Dukhovni
openssl-users at dukhovni.org
Tue Dec 16 17:46:43 UTC 2014
On Tue, Dec 16, 2014 at 06:15:19PM +0100, Hanno B?ck wrote:
> On Tue, 16 Dec 2014 17:11:34 +0100
> Hubert Kario <hkario at redhat.com> wrote:
>
> > they don't differ...
>
> oh sorry, must've pasted the wrong string.
>
> But please ignore my first patch, I don't think this is optimal. I'll
> do another one later.
>
> What I think is a sane approach is to leave the current code mostly as
> it is, just add one further sorting step that will bring GCM ciphers in
> front of non-gcm ones.
> I think that should give the desired result.
We don't need such a "sorting step". If you want "@STRENGTH" to
put AEAD first, then adjust the strength ratings.
We could define a few functions of (algorithm, keylength, mode)
that return an effective strength. Some new keywords would choose
an alternative effective strength function. There should be one
(stable) sorting pass, and no after-the-fact reordering.
--
Viktor.
More information about the openssl-dev
mailing list