[strongSwan-dev] PRF+ and wrapping
tobias at strongswan.org
Mon Oct 21 12:37:27 CEST 2019
> This behavior was asked to us by ANSSI (French Cybersecurity agency) so
> it might make some sense but I'm no expert on the subject.
> However they also told us that wrapping should not happen so returning
> FALSE is surely good enough.
OK, I've pushed a change that lets the methods fail after the counter
wrapped to the prf-plus-wrap branch .
More information about the Dev