Add TODO re: concerns for SADB AES
This commit is contained in:
parent
5d4ec559d3
commit
682f6fc9cc
|
@ -2509,6 +2509,7 @@ int hip_esp_decrypt(__u8 *in, int len, __u8 *out, int *offset, int *outlen,
|
|||
// {
|
||||
// printf("hip_esp_decrypt: AES key problem!\n");
|
||||
// }
|
||||
// TODO: Does this discriminate AES-128-CBC and AES-256-CBC now?
|
||||
entry->evp_cipher = EVP_CIPHER_fetch(
|
||||
/*OSSL_LIB_CTX *ctx*/ NULL,
|
||||
/*const char *algorithm*/ "AES-256-CBC",
|
||||
|
@ -2566,7 +2567,6 @@ int hip_esp_decrypt(__u8 *in, int len, __u8 *out, int *offset, int *outlen,
|
|||
/* padinfo = (struct ip_esp_padinfo*) &in[len - alen - 2]; */
|
||||
break;
|
||||
case SADB_X_EALG_AESCBC:
|
||||
|
||||
EVP_CIPHER_CTX_set_key_length(evp_cipher_ctx, entry->e_keylen);
|
||||
EVP_CipherInit_ex2(evp_cipher_ctx,
|
||||
entry->evp_cipher,
|
||||
|
|
Loading…
Reference in New Issue