Re: [PATCH] cfb8: don't truncate output IV if input is shorter than block size

30 Sep 2019


      Daiki Ueno ueno@gnu.org writes:
...
We realized that cfb8_decrypt doesn't update the IV correctly when the
input is shorter than AES block size.  The attached patches should fix
it.
For testing, I think it would be good to take the testvectors for cfb8,
and split into multiple calls to cfb8_*crypt, in several ways. And check
they all give the same result. A bit like it's done in arcfour-test.c,
or the test_cipher_stream (#if:ed out, not sure if it's worth reviving).
What do you think?
Regards,
/Niels
-- 
Niels Möller. PGP-encrypted email is preferred. Keyid 368C6677.
Internet email is subject to wholesale government surveillance.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: [PATCH] cfb8: don't truncate output IV if input is shorter than block size