summaryrefslogtreecommitdiff
path: root/src/lib/libcrypto/man
diff options
context:
space:
mode:
authortb <>2024-03-02 09:30:21 +0000
committertb <>2024-03-02 09:30:21 +0000
commit27e901828ab79e35b7a6b736f5050679265ae63d (patch)
tree44c6059d07d7614a9e654590b63bf2cbc8e48bd6 /src/lib/libcrypto/man
parentc9bc42b7edc08f714c31d8ec1a974cc5b287ef4c (diff)
downloadopenbsd-27e901828ab79e35b7a6b736f5050679265ae63d.tar.gz
openbsd-27e901828ab79e35b7a6b736f5050679265ae63d.tar.bz2
openbsd-27e901828ab79e35b7a6b736f5050679265ae63d.zip
Remove CMAC_resume()
While it is a neat design detail of CMAC that you can resume it after having finalized it, nothing uses this functionality and it adds some gross things such as retaining intermediate secrets in the CMAC ctx. Once this is gone, we can simplify the CMAC code a bit. ok jsing
Diffstat (limited to 'src/lib/libcrypto/man')
-rw-r--r--src/lib/libcrypto/man/CMAC_Init.326
1 files changed, 2 insertions, 24 deletions
diff --git a/src/lib/libcrypto/man/CMAC_Init.3 b/src/lib/libcrypto/man/CMAC_Init.3
index 81cb8b8f0b..f4143cf451 100644
--- a/src/lib/libcrypto/man/CMAC_Init.3
+++ b/src/lib/libcrypto/man/CMAC_Init.3
@@ -1,4 +1,4 @@
1.\" $OpenBSD: CMAC_Init.3,v 1.5 2023/12/25 15:52:18 schwarze Exp $ 1.\" $OpenBSD: CMAC_Init.3,v 1.6 2024/03/02 09:30:21 tb Exp $
2.\" 2.\"
3.\" Copyright (c) 2020 Ingo Schwarze <schwarze@openbsd.org> 3.\" Copyright (c) 2020 Ingo Schwarze <schwarze@openbsd.org>
4.\" 4.\"
@@ -14,7 +14,7 @@
14.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF 14.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 15.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16.\" 16.\"
17.Dd $Mdocdate: December 25 2023 $ 17.Dd $Mdocdate: March 2 2024 $
18.Dt CMAC_INIT 3 18.Dt CMAC_INIT 3
19.Os 19.Os
20.Sh NAME 20.Sh NAME
@@ -22,7 +22,6 @@
22.Nm CMAC_Init , 22.Nm CMAC_Init ,
23.Nm CMAC_Update , 23.Nm CMAC_Update ,
24.Nm CMAC_Final , 24.Nm CMAC_Final ,
25.Nm CMAC_resume ,
26.Nm CMAC_CTX_copy , 25.Nm CMAC_CTX_copy ,
27.Nm CMAC_CTX_get0_cipher_ctx , 26.Nm CMAC_CTX_get0_cipher_ctx ,
28.Nm CMAC_CTX_cleanup , 27.Nm CMAC_CTX_cleanup ,
@@ -52,13 +51,6 @@
52.Fa "unsigned char *out_mac" 51.Fa "unsigned char *out_mac"
53.Fa "size_t *out_len" 52.Fa "size_t *out_len"
54.Fc 53.Fc
55.Ft int
56.Fn CMAC_resume "CMAC_CTX *ctx"
57.Ft int
58.Fo CMAC_CTX_copy
59.Fa "CMAC_CTX *out_ctx"
60.Fa "CMAC_CTX *in_ctx"
61.Fc
62.Ft EVP_CIPHER_CTX * 54.Ft EVP_CIPHER_CTX *
63.Fn CMAC_CTX_get0_cipher_ctx "CMAC_CTX *ctx" 55.Fn CMAC_CTX_get0_cipher_ctx "CMAC_CTX *ctx"
64.Ft void 56.Ft void
@@ -183,19 +175,6 @@ resulting message authentication code to
183.Fa out_mac . 175.Fa out_mac .
184The caller is responsible for providing a buffer of sufficient size. 176The caller is responsible for providing a buffer of sufficient size.
185.Pp 177.Pp
186Calling
187.Fn CMAC_resume
188after
189.Fn CMAC_Final
190allows the user to subsequently append additional data with
191.Fn CMAC_Update .
192Otherwise, unless
193.Fn CMAC_Init
194is called to start from scratch,
195.Fn CMAC_Update
196can no longer be used after
197.Fn CMAC_Final .
198.Pp
199.Fn CMAC_CTX_copy 178.Fn CMAC_CTX_copy
200performs a deep copy of the already initialized 179performs a deep copy of the already initialized
201.Fa in_ctx 180.Fa in_ctx
@@ -235,7 +214,6 @@ It succeeds unless memory is exhausted.
235.Fn CMAC_Init , 214.Fn CMAC_Init ,
236.Fn CMAC_Update , 215.Fn CMAC_Update ,
237.Fn CMAC_Final , 216.Fn CMAC_Final ,
238.Fn CMAC_resume ,
239and 217and
240.Fn CMAC_CTX_copy 218.Fn CMAC_CTX_copy
241return 1 on success or 0 on failure. 219return 1 on success or 0 on failure.
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-08-23 19:09:36 +0000