On Sun, Jul 13, 2014, Dr. Stephen Henson wrote: > On Sat, Jul 12, 2014, Jitendra Lulla wrote: > > > Also the changes I am proposing may not be acceptable for similar reasons. > > > > It may be that your implementation of an AF_ALG EVP_CIPHER for XTS can be > changed so it works with unmodified OpenSSL. The OpenSSL XTS implementation > is a software implementation and some techniques it uses wont be appropriate. > > Is the EVP_CIPHER code you're using for XTS available somewhere? >
If you look through the existing code for XTS mode in e_aes.c you'll see it copies the IV manually. If your EVP_CIPHER implementation includes the EVP_CIPH_ALWAYS_CALL_INIT flags you can do the same. If you handle that appropriately you shouldn't need to modify OpenSSL at all. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
