mirror of
https://github.com/openssl/openssl.git
synced 2025-01-24 13:55:42 +08:00
67c81ec311
This change allows to pass the authentication tag after specifying the AAD in CCM mode. This is already true for the other two supported AEAD modes (GCM and OCB) and it seems appropriate to match the behavior. GCM and OCB also support to set the tag at any point before the call to `EVP_*Final`, but this won't work for CCM due to a restriction imposed by section 2.6 of RFC3610: The tag must be set before actually decrypting data. This commit also adds a test case for setting the tag after supplying plaintext length and AAD. Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/7243) |
||
|---|---|---|
| .. | ||
| bio_b64.c | ||
| bio_enc.c | ||
| bio_md.c | ||
| bio_ok.c | ||
| build.info | ||
| c_allc.c | ||
| c_alld.c | ||
| c_allkdf.c | ||
| c_allm.c | ||
| cmeth_lib.c | ||
| digest.c | ||
| e_aes_cbc_hmac_sha1.c | ||
| e_aes_cbc_hmac_sha256.c | ||
| e_aes.c | ||
| e_aria.c | ||
| e_bf.c | ||
| e_camellia.c | ||
| e_cast.c | ||
| e_chacha20_poly1305.c | ||
| e_des3.c | ||
| e_des.c | ||
| e_idea.c | ||
| e_null.c | ||
| e_old.c | ||
| e_rc2.c | ||
| e_rc4_hmac_md5.c | ||
| e_rc4.c | ||
| e_rc5.c | ||
| e_seed.c | ||
| e_sm4.c | ||
| e_xcbc_d.c | ||
| encode.c | ||
| evp_cnf.c | ||
| evp_enc.c | ||
| evp_err.c | ||
| evp_fetch.c | ||
| evp_key.c | ||
| evp_lib.c | ||
| evp_locl.h | ||
| evp_pbe.c | ||
| evp_pkey.c | ||
| kdf_lib.c | ||
| m_md2.c | ||
| m_md4.c | ||
| m_md5_sha1.c | ||
| m_md5.c | ||
| m_mdc2.c | ||
| m_null.c | ||
| m_ripemd.c | ||
| m_sha1.c | ||
| m_sha3.c | ||
| m_sigver.c | ||
| m_wp.c | ||
| mac_lib.c | ||
| names.c | ||
| p5_crpt2.c | ||
| p5_crpt.c | ||
| p_dec.c | ||
| p_enc.c | ||
| p_lib.c | ||
| p_open.c | ||
| p_seal.c | ||
| p_sign.c | ||
| p_verify.c | ||
| pbe_scrypt.c | ||
| pkey_kdf.c | ||
| pkey_mac.c | ||
| pmeth_fn.c | ||
| pmeth_gn.c | ||
| pmeth_lib.c | ||