[openssl-dev] [openssl.org #4017] [PATCH] Implement Camellia GCM suites (RFC 6367)
Alessandro Ghedini via RT
rt at openssl.org
Sat Aug 22 16:15:55 UTC 2015
On Sat, Aug 22, 2015 at 01:17:36PM +0000, Stephen Henson via RT wrote:
> On Sat Aug 22 10:21:42 2015, alessandro at ghedini.me wrote:
> > Hello,
> >
> > see GitHub pull request at
> > https://github.com/openssl/openssl/pull/374
> >
> > Which adds support for Camellia GCM and adds the correspondent TLS cipher
> > suites. Most of the code comes from the AES GCM implementation, so maybe
> > there's an opportunity for some refactoring there.
> >
>
> Note that the AES-GCM IV generation is purely there to satisfy the FIPS
> requirements. Since Camellia doesn't have such requirements it could instead
> use the sequence number directly and remove the generation, simplifying the
> code in the process. The recently added AES-CCM code does this.
Ok. I removed the IV generation now, and everything seems to work fine (I've
also done some tests with gnutls as well), but more testing may be needed.
Cheers
More information about the openssl-dev
mailing list