On Thu, May 5, 2016 at 10:49 AM, Stephen Farrell <[email protected]> wrote: > > Thanks all. I updated the RFC editor note to add the FIPS > reference. >
You might also consider mentioning the interop problems that are going to occur when diverging from Bernstein's reference implementation. Its already creating open questions on other mailing lists. For example, linux-crypto and https://www.mail-archive.com/[email protected]/msg1137554.html: > + chacha20_block(&crng->state[0], out); > + if (crng->state[12] == 0) > + crng->state[13]++; state[12]++? Or why do you increment the nonce? Jeff _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
