42dcd39528
This is useful for WireGuard which uses a nonce of 8 bytes rather than the 12 bytes used for IPsec and TLS. Note that this also fixes a (should be) harmless bug in ossl(4) where the counter was incorrectly treated as a 64-bit counter instead of a 32-bit counter in terms of wrapping when using a 12 byte nonce. However, this required a single message (TLS record) longer than 64 * (2^32 - 1) bytes (about 256 GB) to trigger. Sponsored by: The FreeBSD Foundation Differential Revision: https://reviews.freebsd.org/D32122 |
||
---|---|---|
.. | ||
aarch64 | ||
amd64 | ||
arm | ||
i386 | ||
ossl_aarch64.c | ||
ossl_chacha20.c | ||
ossl_chacha.h | ||
ossl_hash.h | ||
ossl_poly1305.c | ||
ossl_poly1305.h | ||
ossl_sha1.c | ||
ossl_sha256.c | ||
ossl_sha512.c | ||
ossl_sha.h | ||
ossl_x86.c | ||
ossl.c | ||
ossl.h |