From: Loup Vaillant <loup@loup-vaillant.fr>
Date: Mon, 16 Apr 2018 10:33:49 +0000 (+0200)
Subject: Removed obsolete warning in the manual
X-Git-Url: https://git.codecow.com/?a=commitdiff_plain;h=b60a61e21c6d867fd4a2b8c9fddfc2424be01d53;p=Monocypher.git

Removed obsolete warning in the manual

The length of additional data in authenticated encryption is now
authenticated.  The user no longer have to worry about it, ever.
---

diff --git a/doc/man/man3/crypto_lock.3monocypher b/doc/man/man3/crypto_lock.3monocypher
index 8b8c93d..325e5be 100644
--- a/doc/man/man3/crypto_lock.3monocypher
+++ b/doc/man/man3/crypto_lock.3monocypher
@@ -152,15 +152,6 @@ and
 .Fn crypto_unlock .
 .It Fa ad_size
 Length of the additional data, in bytes.
-.Sy That length is not authenticated.
-If the additional data is of variable length, the length should be
-appended to
-.Fa ad
-so it gets authenticated, and should be extracted from the end of the
-message when decrypting.
-Otherwise an attacker could provide a false length, effectively moving
-the boundary between the additional data and the ciphertext.
-This may cause buffer overflows in some programs.
 .El
 .Pp
 An incremental interface is available; see