On Sun, Aug 18, 2013 at 2:08 PM, Ben Laurie <b...@links.org> wrote: > > On 15 August 2013 09:21, Tomas Mraz <tm...@redhat.com> wrote: > >> ... >> Especially there is no checking that the key is not used with more than >> 2^32 different IV values. Did I overlook it and the test is there? Or is >> the test not needed because in real life situation this cannot happen? I >> suppose it might happen if the key is not renegotiated during lengthy >> connections with transfer of data in TB range? >> > > How would you propose that the code tests this property? >
I hope Tomas appreciates your grandmotherly kindness, Ben. Or the Socratic method. ;-) - M
