Re: [RFC PATCH 2/8] crypto/krb5: Provide Kerberos 5 crypto through AEAD API

From: David Howells
Date: Fri Jan 17 2025 - 03:14:15 EST


Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> wrote:

> rfc8009 is basically the same as authenc.

Actually, it's not quite the same :-/

rfc8009 chucks the IV from the encryption into the hash first, but authenc()
does not. It may be possible to arrange the buffer so that the assoc data is
also the IV buffer.

David