CMAC moving to crypto

Tom Talpey ttalpey at
Sun Apr 21 15:17:36 MDT 2013

> -----Original Message-----
> From: linux-cifs-owner at [mailto:linux-cifs-
> owner at] On Behalf Of Steve French
> Sent: Thursday, April 18, 2013 10:24 AM
> To: Shirish Pargaonkar; linux-cifs at; samba-technical
> Subject: CMAC moving to crypto
> I see that cmac.c is now in Linux crypto directory, presumably destined for
> 3.11 kernel.  Presumably would allow hardware acceleration for new
> processors which support it in internally ?!
> Has anyone looked at whether and how we could use this (in either kernel or
> samba)

As I'm sure you know, the SMB3 dialect uses AES-CMAC-128 for message signing, so access to the native support of newer processors would benefit Linux SMB3 peers greatly, as it does currently on Windows. Good to see.

Is AES CCM encryption also supported or planned? Because CCM provides integrity, CMAC signing is bypassed for SMB3 encrypted messages.


> See:
> next.git/log/crypto/cmac.c
> --
> Thanks,
> Steve
> --
> To unsubscribe from this list: send the line "unsubscribe linux-cifs" in the
> body of a message to majordomo at More majordomo info at

More information about the samba-technical mailing list