Module Name: src
Committed By: riastradh
Date: Sun Jun 14 23:22:09 UTC 2020
Modified Files:
src/sys/dev/pci: ubsec.c ubsecvar.h
Log Message:
ubsec(4): Don't use prev msg's last block as IV for next msg in CBC.
This violates the security contract of the CBC construction, which
requires that the IV be unpredictable in advance; an adaptive adversary
can exploit this to verify plaintext guesses.
XXX Compile-tested only.
To generate a diff of this commit:
cvs rdiff -u -r1.51 -r1.52 src/sys/dev/pci/ubsec.c
cvs rdiff -u -r1.10 -r1.11 src/sys/dev/pci/ubsecvar.h
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
