<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">

<html lang="en">

<head>

<meta content="text/html; charset=utf-8" http-equiv="Content-Type">

<title>

GitLab

</title>

<style>img {

max-width: 100%; height: auto;

}

</style>

</head>

<body>

<div class="content">

<div style="">

<p dir="auto">Hi,

Thank you for that. Would you like to propose some changes that will make the message more clear, or more detailed description of what you miss? It is on the man-pages or <a href="https://gnutls.org/manual/gnutls.html#Symmetric-algorithms" rel="nofollow noreferrer noopener" target="_blank">in the manual</a>?</p>

<p dir="auto">More specifically:</p>

<blockquote dir="auto">

<p>Can you just set a auth_iov with count 1 or does it need to be the same count as iov?

Do you mean have an <code>auth_iovcnt</code> != <code>iovcnt</code>? The answer is of course, but it would help me to understand what made you think that you could not.</p>

</blockquote>

<blockquote dir="auto">

<p>The ctext only says 'the encrypted data', it doesn't mention that at the end of the cipher text the tag get appended.</p>

</blockquote>

<p dir="auto">In the AEAD ciphers, the encrypted data include the tag. In some algorithms like CCM, GCM the tag is appended to the "normally" encrypted data. In some other algorithms the tag is part of the IV (i.e., prepended to data). There is no separation of ciphertext, and tag.</p>

<p dir="auto">The <a href="https://tools.ietf.org/html/rfc5116#section-2.1" rel="nofollow noreferrer noopener" target="_blank">AEAD rfc</a> is quite clear on that:</p>

<pre class="code highlight js-syntax-highlight plaintext" lang="plaintext" v-pre="true"><code><span id="LC1" class="line" lang="plaintext">The authenticated encryption operation has four inputs, each of which</span>

<span id="LC2" class="line" lang="plaintext">is an octet string:</span>

<span id="LC3" class="line" lang="plaintext"></span>

<span id="LC4" class="line" lang="plaintext">.</span>

<span id="LC5" class="line" lang="plaintext">.</span>

<span id="LC6" class="line" lang="plaintext">.</span>

<span id="LC7" class="line" lang="plaintext">There is a single output:</span>

<span id="LC8" class="line" lang="plaintext">      A ciphertext C,</span></code></pre>

</div>

</div>

<div class="footer" style="margin-top: 10px;">

<p style="font-size: small; color: #777777;">

—

<br>

Reply to this email directly or <a href="https://gitlab.com/gnutls/gnutls/issues/716#note_145449016">view it on GitLab</a>.

<br>

You're receiving this email because of your account on gitlab.com.

If you'd like to receive fewer emails, you can

<a href="https://gitlab.com/sent_notifications/bf2881a9549dea0c94b282c453f2e3e0/unsubscribe">unsubscribe</a>

from this thread or

adjust your notification settings.

<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Issue","url":"https://gitlab.com/gnutls/gnutls/issues/716#note_145449016"}}</script>

</p>

</div>

</body>

</html>