Remove documentation of optional md in one-step hashes

This functionality will be removed, so stop documenting it. Instead mention that another implementation still supports this.
author: tb <> 2024-05-26 09:54:16 +0000
committer: tb <> 2024-05-26 09:54:16 +0000
commit: 09f87a1e448f95c82821ad37370de4fcd8e018e4 (patch)
tree: 59c3a839e394cf67e803bcba3ad8e001884a8fc4
parent: deb355068ef89c1a5bb0bba5167616c533877617 (diff)
download: openbsd-09f87a1e448f95c82821ad37370de4fcd8e018e4.tar.gz
openbsd-09f87a1e448f95c82821ad37370de4fcd8e018e4.tar.bz2
openbsd-09f87a1e448f95c82821ad37370de4fcd8e018e4.zip
4 files changed, 47 insertions, 28 deletions
diff --git a/src/lib/libcrypto/man/HMAC.3 b/src/lib/libcrypto/man/HMAC.3
index a0af270c4d..fa853bb4a1 100644
--- a/src/lib/libcrypto/man/HMAC.3
+++ b/src/lib/libcrypto/man/HMAC.3
@@ -1,4 +1,4 @@
-.\" $OpenBSD: HMAC.3,v 1.20 2022/01/25 17:55:39 tb Exp $
+.\" $OpenBSD: HMAC.3,v 1.21 2024/05/26 09:54:16 tb Exp $
 .\" full merge up to: OpenSSL crypto/hmac a528d4f0 Oct 27 13:40:11 2015 -0400
 .\" selective merge up to: OpenSSL man3/HMAC b3696a55 Sep 2 09:35:50 2017 -0400
 .\"
@@ -52,7 +52,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: January 25 2022 $
+.Dd $Mdocdate: May 26 2024 $
 .Dt HMAC 3
 .Os
 .Sh NAME
@@ -160,11 +160,6 @@ which must have space for the output of the hash function, which is no
 more than
 .Dv EVP_MAX_MD_SIZE
 bytes.
-If
-.Fa md
-is
-.Dv NULL ,
-the digest is placed in a static array, which is not thread safe.
 The size of the output is placed in
 .Fa md_len ,
 unless it is
@@ -329,3 +324,11 @@ and
 .Fn HMAC_CTX_get_md
 first appeared in OpenSSL 1.1.0 and have been available since
 .Ox 6.3 .
+.Sh CAVEATS
+Other implementations allow
+.Fa md
+in
+.Fn HMAC
+to be
+.Dv NULL
+and return a static array, which is not thread safe.
diff --git a/src/lib/libcrypto/man/MD5.3 b/src/lib/libcrypto/man/MD5.3
index 1e4a628591..01e715f406 100644
--- a/src/lib/libcrypto/man/MD5.3
+++ b/src/lib/libcrypto/man/MD5.3
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: MD5.3,v 1.8 2018/03/27 17:35:50 schwarze Exp $
+.\"     $OpenBSD: MD5.3,v 1.9 2024/05/26 09:54:16 tb Exp $
 .\"     OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
 .\"
 .\" This file was written by Ulf Moeller <ulf@openssl.org> and
@@ -49,7 +49,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: March 27 2018 $
+.Dd $Mdocdate: May 26 2024 $
 .Dt MD5 3
 .Os
 .Sh NAME
@@ -123,11 +123,6 @@ and place it in
 which must have space for
 .Dv MD4_DIGEST_LENGTH No == Dv MD5_DIGEST_LENGTH No == 16
 bytes of output.
-If
-.Fa md
-is
-.Dv NULL ,
-the digest is placed in a static array.
 .Pp
 The following functions may be used if the message is not completely
 stored in memory:
@@ -194,3 +189,13 @@ and
 .Fn MD4_Final
 first appeared in OpenSSL 0.9.6 and have been available since
 .Ox 2.9 .
+.Sh CAVEATS
+Other implementations allow
+.Fa md
+in
+.Fn MD4
+and
+.Fn MD5
+to be
+.Dv NULL
+and return a static array, which is not thread safe.
diff --git a/src/lib/libcrypto/man/RIPEMD160.3 b/src/lib/libcrypto/man/RIPEMD160.3
index 6fadb56cef..43c6694036 100644
--- a/src/lib/libcrypto/man/RIPEMD160.3
+++ b/src/lib/libcrypto/man/RIPEMD160.3
@@ -1,4 +1,4 @@
-.\" $OpenBSD: RIPEMD160.3,v 1.7 2019/08/25 15:17:19 schwarze Exp $
+.\" $OpenBSD: RIPEMD160.3,v 1.8 2024/05/26 09:54:16 tb Exp $
 .\" full merge up to: OpenSSL 72a7a702 Feb 26 14:05:09 2019 +0000
 .\"
 .\" This file was written by Ulf Moeller <ulf@openssl.org>.
@@ -48,7 +48,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: August 25 2019 $
+.Dd $Mdocdate: May 26 2024 $
 .Dt RIPEMD160 3
 .Os
 .Sh NAME
@@ -93,11 +93,6 @@ and places it in
 which must have space for
 .Dv RIPEMD160_DIGEST_LENGTH
 == 20 bytes of output.
-If
-.Fa md
-is
-.Dv NULL ,
-the digest is placed in a static array.
 .Pp
 The following functions may be used if the message is not completely
 stored in memory:
@@ -149,3 +144,11 @@ and
 .Fn RIPEMD160_Final
 first appeared in SSLeay 0.9.0 and have been available since
 .Ox 2.4 .
+.Sh CAVEATS
+Other implementations allow
+.Fa md
+in
+.Fn RIPEMD160
+to be
+.Dv NULL
+and return a static array, which is not thread safe.
diff --git a/src/lib/libcrypto/man/SHA1.3 b/src/lib/libcrypto/man/SHA1.3
index f5061e56e6..722c10b145 100644
--- a/src/lib/libcrypto/man/SHA1.3
+++ b/src/lib/libcrypto/man/SHA1.3
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: SHA1.3,v 1.7 2018/03/27 17:35:50 schwarze Exp $
+.\"     $OpenBSD: SHA1.3,v 1.8 2024/05/26 09:54:16 tb Exp $
 .\"     OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
 .\"
 .\" This file was written by Ulf Moeller <ulf@openssl.org> and
@@ -49,7 +49,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: March 27 2018 $
+.Dd $Mdocdate: May 26 2024 $
 .Dt SHA1 3
 .Os
 .Sh NAME
@@ -195,11 +195,6 @@ and places it in
 which must have space for
 .Dv SHA_DIGEST_LENGTH
 == 20 bytes of output.
-If
-.Fa md
-is
-.Dv NULL ,
-the digest is placed in a static array, which is not thread safe.
 .Pp
 The following functions may be used if the message is not completely
 stored in memory:
@@ -274,3 +269,16 @@ first appeared in SSLeay 0.5.1 and have been available since
 The other functions first appeared in OpenSSL 0.9.8
 and have been available since
 .Ox 4.5 .
+.Sh CAVEATS
+Other implementations allow
+.Fa md
+in
+.Fn SHA1 ,
+.Fn SHA224 ,
+.Fn SHA256 ,
+.Fn SHA384 ,
+and
+.Fn SHA512
+to be
+.Dv NULL
+and return a static array, which is not thread safe.
author	tb <>	2024-05-26 09:54:16 +0000
committer	tb <>	2024-05-26 09:54:16 +0000
commit	09f87a1e448f95c82821ad37370de4fcd8e018e4 (patch)
tree	59c3a839e394cf67e803bcba3ad8e001884a8fc4
parent	deb355068ef89c1a5bb0bba5167616c533877617 (diff)
download	openbsd-09f87a1e448f95c82821ad37370de4fcd8e018e4.tar.gz openbsd-09f87a1e448f95c82821ad37370de4fcd8e018e4.tar.bz2 openbsd-09f87a1e448f95c82821ad37370de4fcd8e018e4.zip

diff --git a/src/lib/libcrypto/man/HMAC.3 b/src/lib/libcrypto/man/HMAC.3 index a0af270c4d..fa853bb4a1 100644 --- a/src/lib/libcrypto/man/HMAC.3 +++ b/src/lib/libcrypto/man/HMAC.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: HMAC.3,v 1.20 2022/01/25 17:55:39 tb Exp $	1	.\" $OpenBSD: HMAC.3,v 1.21 2024/05/26 09:54:16 tb Exp $
2	.\" full merge up to: OpenSSL crypto/hmac a528d4f0 Oct 27 13:40:11 2015 -0400	2	.\" full merge up to: OpenSSL crypto/hmac a528d4f0 Oct 27 13:40:11 2015 -0400
3	.\" selective merge up to: OpenSSL man3/HMAC b3696a55 Sep 2 09:35:50 2017 -0400	3	.\" selective merge up to: OpenSSL man3/HMAC b3696a55 Sep 2 09:35:50 2017 -0400
4	.\"	4	.\"
@@ -52,7 +52,7 @@
52	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	52	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
53	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	53	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
54	.\"	54	.\"
55	.Dd $Mdocdate: January 25 2022 $	55	.Dd $Mdocdate: May 26 2024 $
56	.Dt HMAC 3	56	.Dt HMAC 3
57	.Os	57	.Os
58	.Sh NAME	58	.Sh NAME
@@ -160,11 +160,6 @@ which must have space for the output of the hash function, which is no
160	more than	160	more than
161	.Dv EVP_MAX_MD_SIZE	161	.Dv EVP_MAX_MD_SIZE
162	bytes.	162	bytes.
163	If
164	.Fa md
165	is
166	.Dv NULL ,
167	the digest is placed in a static array, which is not thread safe.
168	The size of the output is placed in	163	The size of the output is placed in
169	.Fa md_len ,	164	.Fa md_len ,
170	unless it is	165	unless it is
@@ -329,3 +324,11 @@ and
329	.Fn HMAC_CTX_get_md	324	.Fn HMAC_CTX_get_md
330	first appeared in OpenSSL 1.1.0 and have been available since	325	first appeared in OpenSSL 1.1.0 and have been available since
331	.Ox 6.3 .	326	.Ox 6.3 .
		327	.Sh CAVEATS
		328	Other implementations allow
		329	.Fa md
		330	in
		331	.Fn HMAC
		332	to be
		333	.Dv NULL
		334	and return a static array, which is not thread safe.


diff --git a/src/lib/libcrypto/man/MD5.3 b/src/lib/libcrypto/man/MD5.3 index 1e4a628591..01e715f406 100644 --- a/src/lib/libcrypto/man/MD5.3 +++ b/src/lib/libcrypto/man/MD5.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: MD5.3,v 1.8 2018/03/27 17:35:50 schwarze Exp $	1	.\" $OpenBSD: MD5.3,v 1.9 2024/05/26 09:54:16 tb Exp $
2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400	2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
3	.\"	3	.\"
4	.\" This file was written by Ulf Moeller <ulf@openssl.org> and	4	.\" This file was written by Ulf Moeller <ulf@openssl.org> and
@@ -49,7 +49,7 @@
49	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	49	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	50	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
51	.\"	51	.\"
52	.Dd $Mdocdate: March 27 2018 $	52	.Dd $Mdocdate: May 26 2024 $
53	.Dt MD5 3	53	.Dt MD5 3
54	.Os	54	.Os
55	.Sh NAME	55	.Sh NAME
@@ -123,11 +123,6 @@ and place it in
123	which must have space for	123	which must have space for
124	.Dv MD4_DIGEST_LENGTH No == Dv MD5_DIGEST_LENGTH No == 16	124	.Dv MD4_DIGEST_LENGTH No == Dv MD5_DIGEST_LENGTH No == 16
125	bytes of output.	125	bytes of output.
126	If
127	.Fa md
128	is
129	.Dv NULL ,
130	the digest is placed in a static array.
131	.Pp	126	.Pp
132	The following functions may be used if the message is not completely	127	The following functions may be used if the message is not completely
133	stored in memory:	128	stored in memory:
@@ -194,3 +189,13 @@ and
194	.Fn MD4_Final	189	.Fn MD4_Final
195	first appeared in OpenSSL 0.9.6 and have been available since	190	first appeared in OpenSSL 0.9.6 and have been available since
196	.Ox 2.9 .	191	.Ox 2.9 .
		192	.Sh CAVEATS
		193	Other implementations allow
		194	.Fa md
		195	in
		196	.Fn MD4
		197	and
		198	.Fn MD5
		199	to be
		200	.Dv NULL
		201	and return a static array, which is not thread safe.


diff --git a/src/lib/libcrypto/man/RIPEMD160.3 b/src/lib/libcrypto/man/RIPEMD160.3 index 6fadb56cef..43c6694036 100644 --- a/src/lib/libcrypto/man/RIPEMD160.3 +++ b/src/lib/libcrypto/man/RIPEMD160.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: RIPEMD160.3,v 1.7 2019/08/25 15:17:19 schwarze Exp $	1	.\" $OpenBSD: RIPEMD160.3,v 1.8 2024/05/26 09:54:16 tb Exp $
2	.\" full merge up to: OpenSSL 72a7a702 Feb 26 14:05:09 2019 +0000	2	.\" full merge up to: OpenSSL 72a7a702 Feb 26 14:05:09 2019 +0000
3	.\"	3	.\"
4	.\" This file was written by Ulf Moeller <ulf@openssl.org>.	4	.\" This file was written by Ulf Moeller <ulf@openssl.org>.
@@ -48,7 +48,7 @@
48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50	.\"	50	.\"
51	.Dd $Mdocdate: August 25 2019 $	51	.Dd $Mdocdate: May 26 2024 $
52	.Dt RIPEMD160 3	52	.Dt RIPEMD160 3
53	.Os	53	.Os
54	.Sh NAME	54	.Sh NAME
@@ -93,11 +93,6 @@ and places it in
93	which must have space for	93	which must have space for
94	.Dv RIPEMD160_DIGEST_LENGTH	94	.Dv RIPEMD160_DIGEST_LENGTH
95	== 20 bytes of output.	95	== 20 bytes of output.
96	If
97	.Fa md
98	is
99	.Dv NULL ,
100	the digest is placed in a static array.
101	.Pp	96	.Pp
102	The following functions may be used if the message is not completely	97	The following functions may be used if the message is not completely
103	stored in memory:	98	stored in memory:
@@ -149,3 +144,11 @@ and
149	.Fn RIPEMD160_Final	144	.Fn RIPEMD160_Final
150	first appeared in SSLeay 0.9.0 and have been available since	145	first appeared in SSLeay 0.9.0 and have been available since
151	.Ox 2.4 .	146	.Ox 2.4 .
		147	.Sh CAVEATS
		148	Other implementations allow
		149	.Fa md
		150	in
		151	.Fn RIPEMD160
		152	to be
		153	.Dv NULL
		154	and return a static array, which is not thread safe.


diff --git a/src/lib/libcrypto/man/SHA1.3 b/src/lib/libcrypto/man/SHA1.3 index f5061e56e6..722c10b145 100644 --- a/src/lib/libcrypto/man/SHA1.3 +++ b/src/lib/libcrypto/man/SHA1.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: SHA1.3,v 1.7 2018/03/27 17:35:50 schwarze Exp $	1	.\" $OpenBSD: SHA1.3,v 1.8 2024/05/26 09:54:16 tb Exp $
2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400	2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
3	.\"	3	.\"
4	.\" This file was written by Ulf Moeller <ulf@openssl.org> and	4	.\" This file was written by Ulf Moeller <ulf@openssl.org> and
@@ -49,7 +49,7 @@
49	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	49	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	50	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
51	.\"	51	.\"
52	.Dd $Mdocdate: March 27 2018 $	52	.Dd $Mdocdate: May 26 2024 $
53	.Dt SHA1 3	53	.Dt SHA1 3
54	.Os	54	.Os
55	.Sh NAME	55	.Sh NAME
@@ -195,11 +195,6 @@ and places it in
195	which must have space for	195	which must have space for
196	.Dv SHA_DIGEST_LENGTH	196	.Dv SHA_DIGEST_LENGTH
197	== 20 bytes of output.	197	== 20 bytes of output.
198	If
199	.Fa md
200	is
201	.Dv NULL ,
202	the digest is placed in a static array, which is not thread safe.
203	.Pp	198	.Pp
204	The following functions may be used if the message is not completely	199	The following functions may be used if the message is not completely
205	stored in memory:	200	stored in memory:
@@ -274,3 +269,16 @@ first appeared in SSLeay 0.5.1 and have been available since
274	The other functions first appeared in OpenSSL 0.9.8	269	The other functions first appeared in OpenSSL 0.9.8
275	and have been available since	270	and have been available since
276	.Ox 4.5 .	271	.Ox 4.5 .
		272	.Sh CAVEATS
		273	Other implementations allow
		274	.Fa md
		275	in
		276	.Fn SHA1 ,
		277	.Fn SHA224 ,
		278	.Fn SHA256 ,
		279	.Fn SHA384 ,
		280	and
		281	.Fn SHA512
		282	to be
		283	.Dv NULL
		284	and return a static array, which is not thread safe.