]> git.ipfire.org Git - thirdparty/ipxe.git/commit
projects / thirdparty / ipxe.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6a360eb) | patch
[tls] Abstract out concept of a TLS authentication header
authorMichael Brown <mcb30@ipxe.org>
Mon, 7 Nov 2022 18:34:37 +0000 (18:34 +0000)
committerMichael Brown <mcb30@ipxe.org>
Tue, 8 Nov 2022 13:48:45 +0000 (13:48 +0000)
commitb6eef1485808093f9dae4fe9d6b685e01a6d65a4
tree412bf41dea752f04f3cca2cc658aedac5bebac9atree | snapshot
parent6a360ebfde9921b9cacbee724fe25d646e4499d5commit | diff
[tls] Abstract out concept of a TLS authentication header

All TLS cipher types use a common structure for the per-record data
that is authenticated in addition to the plaintext itself.  This data
is used as a prefix in the HMAC calculation for stream and block
ciphers, or as additional authenticated data for AEAD ciphers.

Define a "TLS authentication header" structure to hold this data as a
contiguous block, in order to meet the alignment requirement for AEAD
ciphers such as GCM.

Signed-off-by: Michael Brown <mcb30@ipxe.org>
src/include/ipxe/tls.h diff | blob | blame | history
src/net/tls.c diff | blob | blame | history
Mirror of https://github.com/ipxe/ipxe.git