GNU bug report logs - #65826
[PATCH] Add nonce support for gnutls-hash-mac

Previous Next

Package: emacs;

Reported by: SK Kim <tttuuu888 <at> gmail.com>

Date: Fri, 8 Sep 2023 16:00:02 UTC

Severity: wishlist

Tags: patch

Full log

Message #8 received at 65826 <at> debbugs.gnu.org (full text, mbox):

From: Stefan Kangas <stefankangas <at> gmail.com>
To: SK Kim <tttuuu888 <at> gmail.com>, 65826 <at> debbugs.gnu.org
Subject: Re: bug#65826: [PATCH] Add nonce support for gnutls-hash-mac
Date: Fri, 8 Sep 2023 09:18:37 -0700

SK Kim <tttuuu888 <at> gmail.com> writes:

> As far as I understood, currently `gnutls-hash-mac' does not support nonce
> input, so there is no way to properly hash with some MAC algorithms which
> require nonce. (e.g AES-GMAC-128)
> So I suggest adding an optional argument NONCE to `gnutls-hash-mac' to
> support MAC algorithms with nonce.
>
> What I have tested after applying the attached patch are as below.
> 1. AES-GMC-128/192/256 works correctly.
> 2. NONCE does not affect SHA256/SHA512 hash results, even if presented.
>
> Since NONCE is added as an optional argument, I believe it will not even
> affect existing code using the 'gnutls-hash-mac' function.

Sounds useful.  Could you add unit tests for this, though?  In
particular, it would be good to test your number 1 and 2 above.
This bug report was last modified 1 year and 319 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.