CMP: generalize ossl_cmp_calc_protection() to handle Edwards curves correctly

Fixes #21564 Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/21884)
author: Dr. David von Oheimb <dev@ddvo.net> 2023-08-29 11:09:05 +0200
committer: Tomas Mraz <tomas@openssl.org> 2023-09-05 13:25:41 +0200
commit: e664ef78b92532bf94c7976b181d88c4abf83074 (patch)
tree: 9eec333d5581407a7bf666a607b00e5463de048c /doc/internal
parent: Update fuzz corpora to latest commit (diff)
download: openssl-e664ef78b92532bf94c7976b181d88c4abf83074.tar.xz
openssl-e664ef78b92532bf94c7976b181d88c4abf83074.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/doc/internal/man3/ossl_cmp_msg_protect.pod b/doc/internal/man3/ossl_cmp_msg_protect.pod
index 04da21fd9f..2956b48ad8 100644
--- a/doc/internal/man3/ossl_cmp_msg_protect.pod
+++ b/doc/internal/man3/ossl_cmp_msg_protect.pod
@@ -21,6 +21,9 @@ ossl_cmp_msg_add_extraCerts
 ossl_cmp_calc_protection() calculates the protection for the given I<msg>
 according to the algorithm and parameters in the message header's protectionAlg
 using the credentials, library context, and property criteria in the I<ctx>.
+Unless I<msg->header->protectionAlg> is B<PasswordBasedMAC>,
+its value is completed according to I<ctx->pkey> and I<ctx->digest>,
+where the latter irrelevant in the case of Edwards curves.
 
 ossl_cmp_msg_protect() (re-)protects the given message I<msg> using an algorithm
 depending on the available context information given in the I<ctx>.
author	Dr. David von Oheimb <dev@ddvo.net>	2023-08-29 11:09:05 +0200
committer	Tomas Mraz <tomas@openssl.org>	2023-09-05 13:25:41 +0200
commit	e664ef78b92532bf94c7976b181d88c4abf83074 (patch)
tree	9eec333d5581407a7bf666a607b00e5463de048c /doc/internal
parent	Update fuzz corpora to latest commit (diff)
download	openssl-e664ef78b92532bf94c7976b181d88c4abf83074.tar.xz openssl-e664ef78b92532bf94c7976b181d88c4abf83074.zip