[openssl] master update
Matt Caswell
matt at openssl.org
Fri Apr 3 10:14:03 UTC 2020
The branch master has been updated
via 70d80ef9898ddbe03841efd2df2f526b71829d7f (commit)
from 94468c775c8e23dae8549ca15b4f9e0718650b0c (commit)
- Log -----------------------------------------------------------------
commit 70d80ef9898ddbe03841efd2df2f526b71829d7f
Author: Matt Caswell <matt at openssl.org>
Date: Thu Apr 2 09:58:59 2020 +0100
Expand the XTS documentation
Explain that XTS does not support streaming, and that the IV value is the
tweak.
Reviewed-by: Tomas Mraz <tmraz at fedoraproject.org>
Reviewed-by: Paul Dale <paul.dale at oracle.com>
(Merged from https://github.com/openssl/openssl/pull/11461)
-----------------------------------------------------------------------
Summary of changes:
doc/man3/EVP_aes_128_gcm.pod | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/doc/man3/EVP_aes_128_gcm.pod b/doc/man3/EVP_aes_128_gcm.pod
index 1ca893a738..56ae74040a 100644
--- a/doc/man3/EVP_aes_128_gcm.pod
+++ b/doc/man3/EVP_aes_128_gcm.pod
@@ -160,6 +160,13 @@ In particular, XTS-AES-128 (B<EVP_aes_128_xts>) takes input of a 256-bit key to
achieve AES 128-bit security, and XTS-AES-256 (B<EVP_aes_256_xts>) takes input
of a 512-bit key to achieve AES 256-bit security.
+The XTS implementation in OpenSSL does not support streaming. That is there must
+only be one L<EVP_EncryptUpdate(3)> call per L<EVP_EncryptInit_ex(3)> call (and
+similarly with the "Decrypt" functions).
+
+The I<iv> parameter to L<EVP_EncryptInit_ex(3)> or L<EVP_DecryptInit_ex(3)> is
+the XTS "tweak" value.
+
=back
=head1 RETURN VALUES
More information about the openssl-commits
mailing list