The branch OpenSSL_1_1_0-stable has been updated
via 9807f03e4ab77f20561a4a8b8f5eef122273c703 (commit)
from e09cfa470968fed533c864b98fb14210eb10b573 (commit)
- Log -----------------------------------------------------------------
commit 9807f03e4ab77f20561a4a8b8f5eef122273c703
Author: Dr. Stephen Henson <st...@openssl.org>
Date: Wed Aug 23 23:58:04 2017 +0100
Correct GCM docs.
Fix GCM documentation: the tag does not have to be supplied before
decrypting any data any more.
Reviewed-by: Rich Salz <rs...@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/4231)
-----------------------------------------------------------------------
Summary of changes:
doc/crypto/EVP_EncryptInit.pod | 5 ++---
1 file changed, 2 insertions(+), 3 deletions(-)
diff --git a/doc/crypto/EVP_EncryptInit.pod b/doc/crypto/EVP_EncryptInit.pod
index 012acfd..17bd7a9 100644
--- a/doc/crypto/EVP_EncryptInit.pod
+++ b/doc/crypto/EVP_EncryptInit.pod
@@ -448,9 +448,8 @@ either be 16 or the value previously set via
EVP_CTRL_OCB_SET_TAGLEN.
EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, taglen, tag);
Sets the expected tag to B<taglen> bytes from B<tag>. This call is only legal
-when decrypting data and must be made B<before> any data is processed (e.g.
-before any EVP_DecryptUpdate() call). For OCB mode the taglen must
-either be 16 or the value previously set via EVP_CTRL_AEAD_SET_TAG.
+when decrypting data. For OCB mode the taglen must either be 16 or the value
+previously set via EVP_CTRL_AEAD_SET_TAG.
In OCB mode calling this with B<tag> set to NULL sets the tag length. The tag
length can only be set before specifying an IV. If not called a default tag
_____
openssl-commits mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
