dect
/
linux-2.6
Archived
13
0
Fork 0
Code Releases Activity

[CRYPTO] aead: Return EBADMSG for ICV mismatch 

This patch changes gcm/authenc to return EBADMSG instead of EINVAL for
ICV mismatches.  This convention has already been adopted by IPsec.

Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
This commit is contained in:
Herbert Xu 2007-12-04 20:07:27 +11:00
parent 6160b28992
commit fe70f5dfe1
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
crypto/authenc.c
View File

@ -200,7 +200,7 @@ auth_unlock:
authsize = crypto_aead_authsize(authenc);
scatterwalk_map_and_copy(ihash, src, cryptlen, authsize, 0);
return memcmp(ihash, ohash, authsize) ? -EINVAL : 0;
return memcmp(ihash, ohash, authsize) ? -EBADMSG: 0;
}
static void crypto_authenc_decrypt_done(struct crypto_async_request *req,

2
crypto/gcm.c
View File

@ -327,7 +327,7 @@ static int crypto_gcm_decrypt(struct aead_request *req)
scatterwalk_map_and_copy(iauth_tag, req->src, cryptlen, authsize, 0);
if (memcmp(iauth_tag, auth_tag, authsize))
return -EINVAL;
return -EBADMSG;
return crypto_ablkcipher_decrypt(&abreq);
}