From mboxrd@z Thu Jan 1 00:00:00 1970 From: Tom Rini Date: Mon, 29 Jan 2018 15:20:46 -0500 Subject: [U-Boot] aes: Allow non-zero initialization vector In-Reply-To: <741261514983436@web53g.yandex.ru> References: <741261514983436@web53g.yandex.ru> Message-ID: <20180129202046.GD20149@bill-the-cat> List-Id: MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit To: u-boot@lists.denx.de On Wed, Jan 03, 2018 at 03:43:56PM +0300, Андрей Мозжухин wrote: > AES encryption in CBC mode, in most cases, must be used with random > initialization vector. Using the same key and initialization vector several > times is weak and must be avoided. > > Added iv parameter to the aes_cbc_encrypt_blocks and aes_cbc_decrypt_blocks > functions for passing initialization vector. > > Command 'aes' now also require the initialization vector parameter. > > Signed-off-by: Andrey Mozzhuhin Applied to u-boot/master, thanks! -- Tom -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: not available URL: