]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f6c400f) | patch
Introduce cms kekcipher option to select cipher for pwri
authorJakub Zelenka <jakub.openssl@gmail.com>
Thu, 6 Feb 2025 18:07:28 +0000 (19:07 +0100)
committerTomas Mraz <tomas@openssl.org>
Tue, 1 Jul 2025 17:04:53 +0000 (19:04 +0200)
commitf3867bb25bee6267eb292ebdb0528de17710828f
tree2f0fe345fea1ef2026c847fc674b1bfc0a109c6ctree
parentf6c400f4ccaf6b36f5430aa3f6c94b704e335738commit | diff
Introduce cms kekcipher option to select cipher for pwri

This is useful for AEAD ciphers where it is not possible to use AEAD
cipher (currently only AES GCM supported) for password recipient info
because the same cipher is used for encrypting the password and it is
not possible to store tag for this purpose so different cipher (e.g.
AES CBC) needs to be selected.

Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/26871)
apps/cms.c diff | blob | blame | history
crypto/cms/cms_pwri.c diff | blob | blame | history
doc/man1/openssl-cms.pod.in diff | blob | blame | history
test/recipes/80-test_cms.t diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git