[gnutls-devel] GnuTLS | Document that the returned size by gnutls_cipher_get_iv_size() might not be the correct size for the nonce (#717)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Tue Feb 26 16:21:29 CET 2019

New Issue was created.

Issue 717: https://gitlab.com/gnutls/gnutls/issues/717
Author:    Andreas Schneider

In case of AES-CCM 12 is returned, which is in most cases wrong.

The RFC states:

 2.  A nonce N of 15-L octets.  Within the scope of any encryption key
       K, the nonce value MUST be unique.  That is, the set of nonce
       values used with any given key MUST NOT contain any duplicate
       values.  Using the same nonce for two different messages
       encrypted with the same key destroys the security properties of
       this mode.

Valid values of L range between 2 octets and 8 octets
   (the value L=1 is reserved).

So the documentation of the function should tell the user to check the RFC and implementation if the size is fixed or needs to be calculated differently!

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/717
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190226/d04d2a15/attachment.html>

More information about the Gnutls-devel mailing list