cryptocheck: Don't test Chacha20-Poly1305 with an IV size of 8

OpenSSL 3.0+ doesn't support an IV size of 8 either for the Chacha20 stream cipher or the AEAD combination with Poly1305. This did work previously with OpenSSL 1.1. Reviewed by: markj Sponsored by: AFRL, DARPA Differential Revision: https://reviews.freebsd.org/D45280
2024-11-14 06:12:01 +01:00 · 2024-05-21 09:42:12 -07:00 · 2024-05-21 09:42:12 -07:00 · 4ebf794a08
commit 4ebf794a08
parent 76df3c57a0
1 changed files with 2 additions and 2 deletions
--- a/tools/tools/crypto/cryptocheck.c
+++ b/tools/tools/crypto/cryptocheck.c
@ -136,7 +136,7 @@
 *	aes-ccm128	128-bit AES-CCM
 *	aes-ccm192	192-bit AES-CCM
 *	aes-ccm256	256-bit AES-CCM
- *	chacha20-poly1305 Chacha20 with Poly1305 per RFC 8439
+ *	chacha20-poly1305 Chacha20 (96 bit nonce) with Poly1305 per RFC 8439
 */

 #include <sys/param.h>
@ -253,7 +253,7 @@ static const struct alg {
 	  .evp_cipher = EVP_aes_256_ccm },
 	{ .name = "chacha20-poly1305", .cipher = CRYPTO_CHACHA20_POLY1305,
 	  .type = T_AEAD, .tag_len = POLY1305_HASH_LEN,
-	  .iv_sizes = { CHACHA20_POLY1305_IV_LEN, 8 },
+	  .iv_sizes = { CHACHA20_POLY1305_IV_LEN },
 	  .evp_cipher = EVP_chacha20_poly1305 },
 };