Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: GnuPG: gcrypt

what is gcry_md_reset()'s relationship with HMAC?

  

 
GnuPG gcrypt RSS feed   Index | Next | Previous | View Threaded


dkg at fifthhorseman

Nov 5, 2009, 8:31 PM

Post #1 of 2 (509 views)
Permalink
what is gcry_md_reset()'s relationship with HMAC?
hey folks--

from reading the gcrypt source, it looks to me like gcry_md_reset() does
actually re-initializes the digest with the first part of the macpads
structure, but it doesn't wipe the pads out.

But the documentation for gcry_md_reset() doesn't mention setkey() at
all -- it implies that it's the same as a close() followed by an open(),
which would actually result in the wiping of the macpads themselves.
(i.e. another gcry_md_setkey() would need to be invoked).

Any explanation of this? Can the documentation be updated to be clearer?

(i'm afraid i don't understand the md_write() of the inner padding for
HMAC-enabled MDs at all, but that's probably because i don't correctly
understand the HMAC context itself yet -- pointers welcome!)

Regards,

--dkg
Attachments: signature.asc (0.87 KB)


dkg at fifthhorseman

Nov 9, 2009, 2:44 PM

Post #2 of 2 (474 views)
Permalink
Re: what is gcry_md_reset()'s relationship with HMAC? [In reply to]
On 11/05/2009 11:31 PM, Daniel Kahn Gillmor wrote:
> from reading the gcrypt source, it looks to me like gcry_md_reset() does
> actually re-initializes the digest with the first part of the macpads
> structure, but it doesn't wipe the pads out.
>
> But the documentation for gcry_md_reset() doesn't mention setkey() at
> all -- it implies that it's the same as a close() followed by an open(),
> which would actually result in the wiping of the macpads themselves.
> (i.e. another gcry_md_setkey() would need to be invoked).

after some tests, it seems clear that gcry_md_reset() does not reset the
HMAC keys. I think this is the Right Thing to do, but the documentation
does not appear to describe this properly -- it seems to be different
from a close() followed by an open().

maybe the docs should be updated?

--dkg
Attachments: signature.asc (0.87 KB)

GnuPG gcrypt RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.