Attempt to (incompletely) document EVP_aes_*().

When EVP_des_cbc() was suggested, suggest EVP_aes_256_cbc() instead. Remove mention of EVP_des_ede3_cbc() being the algorithm of choice for S/MIME. Don't mention US-export limited RC2 algorithms, you'd better not know about them.
author: miod <> 2014-07-10 13:08:58 +0000
committer: miod <> 2014-07-10 13:08:58 +0000
commit: 324d92fa7f658d01382ff72c596358f190772369 (patch)
tree: 4b65e7dddebc9f3ed56aeb299478c2f0029aabfd /src/lib/libcrypto/doc/PKCS7_encrypt.pod
parent: a21d4e83af767763bc6679d7872bb1a74a952d84 (diff)
download: openbsd-324d92fa7f658d01382ff72c596358f190772369.tar.gz
openbsd-324d92fa7f658d01382ff72c596358f190772369.tar.bz2
openbsd-324d92fa7f658d01382ff72c596358f190772369.zip
1 files changed, 0 insertions, 7 deletions
diff --git a/src/lib/libcrypto/doc/PKCS7_encrypt.pod b/src/lib/libcrypto/doc/PKCS7_encrypt.pod
index e206684384..8bc77407b9 100644
--- a/src/lib/libcrypto/doc/PKCS7_encrypt.pod
+++ b/src/lib/libcrypto/doc/PKCS7_encrypt.pod
@@ -22,13 +22,6 @@ Only RSA keys are supported in PKCS#7 and envelopedData so the recipient
 certificates supplied to this function must all contain RSA public keys, though
 they do not have to be signed using the RSA algorithm.
-EVP_des_ede3_cbc() (triple DES) is the algorithm of choice for S/MIME use
-because most clients will support it.
-Some old "export grade" clients may only support weak encryption using 40 or 64
-bit RC2. These can be used by passing EVP_rc2_40_cbc() and EVP_rc2_64_cbc()
-respectively.
 The algorithm passed in the B<cipher> parameter must support ASN1 encoding of
 its parameters.
author	miod <>	2014-07-10 13:08:58 +0000
committer	miod <>	2014-07-10 13:08:58 +0000
commit	324d92fa7f658d01382ff72c596358f190772369 (patch)
tree	4b65e7dddebc9f3ed56aeb299478c2f0029aabfd /src/lib/libcrypto/doc/PKCS7_encrypt.pod
parent	a21d4e83af767763bc6679d7872bb1a74a952d84 (diff)
download	openbsd-324d92fa7f658d01382ff72c596358f190772369.tar.gz openbsd-324d92fa7f658d01382ff72c596358f190772369.tar.bz2 openbsd-324d92fa7f658d01382ff72c596358f190772369.zip

diff --git a/src/lib/libcrypto/doc/PKCS7_encrypt.pod b/src/lib/libcrypto/doc/PKCS7_encrypt.pod index e206684384..8bc77407b9 100644 --- a/src/lib/libcrypto/doc/PKCS7_encrypt.pod +++ b/src/lib/libcrypto/doc/PKCS7_encrypt.pod
@@ -22,13 +22,6 @@ Only RSA keys are supported in PKCS#7 and envelopedData so the recipient
22	certificates supplied to this function must all contain RSA public keys, though	22	certificates supplied to this function must all contain RSA public keys, though
23	they do not have to be signed using the RSA algorithm.	23	they do not have to be signed using the RSA algorithm.
24		24
25	EVP_des_ede3_cbc() (triple DES) is the algorithm of choice for S/MIME use
26	because most clients will support it.
27
28	Some old "export grade" clients may only support weak encryption using 40 or 64
29	bit RC2. These can be used by passing EVP_rc2_40_cbc() and EVP_rc2_64_cbc()
30	respectively.
31
32	The algorithm passed in the B<cipher> parameter must support ASN1 encoding of	25	The algorithm passed in the B<cipher> parameter must support ASN1 encoding of
33	its parameters.	26	its parameters.
34		27