Fewer lies, also do not document DES_3cbc_encrypt anymore.

author: miod <> 2014-07-10 13:38:52 +0000
committer: miod <> 2014-07-10 13:38:52 +0000
commit: 1082a058669965dec6fa4446b8d1067628bb8e91 (patch)
tree: a427912b8208a12fc7a310e0112c4fbd505b945e /src
parent: 281172858344f625c73e08f7af61073307e2d0b0 (diff)
download: openbsd-1082a058669965dec6fa4446b8d1067628bb8e91.tar.gz
openbsd-1082a058669965dec6fa4446b8d1067628bb8e91.tar.bz2
openbsd-1082a058669965dec6fa4446b8d1067628bb8e91.zip
2 files changed, 12 insertions, 44 deletions
diff --git a/src/lib/libcrypto/doc/DES_set_key.pod b/src/lib/libcrypto/doc/DES_set_key.pod
index 75638a149a..c0447b8bae 100644
--- a/src/lib/libcrypto/doc/DES_set_key.pod
+++ b/src/lib/libcrypto/doc/DES_set_key.pod
@@ -287,8 +287,6 @@ The L<evp(3)|evp(3)> library provides higher-level encryption functions.
 =head1 BUGS
-DES_3cbc_encrypt() is flawed and must not be used in applications.
 DES_cbc_encrypt() does not modify B<ivec>; use DES_ncbc_encrypt()
 instead.
@@ -310,33 +308,19 @@ The same applies for DES_string_to_2key().
 ANSI X3.106
-The B<des> library was written to be source code compatible with
+The B<des> library was initially written to be source code compatible with
 the MIT Kerberos library.
 =head1 SEE ALSO
-crypt(3), L<des_modes(7)|des_modes(7)>, L<evp(3)|evp(3)>, L<rand(3)|rand(3)>
+crypt(3), L<evp(3)|evp(3)>, L<rand(3)|rand(3)>
 =head1 HISTORY
 In OpenSSL 0.9.7, all des_ functions were renamed to DES_ to avoid
-clashes with older versions of libdes.  Compatibility des_ functions
+clashes with older versions of libdes.
-are provided for a short while, as well as crypt().
-Declarations for these are in <openssl/des_old.h>. There is no DES_
+DES_set_key_checked() and DES_set_key_unchecked() were added in
-variant for des_random_seed().
-This will happen to other functions
-as well if they are deemed redundant (des_random_seed() just calls
-RAND_seed() and is present for backward compatibility only), buggy or
-already scheduled for removal.
-des_cbc_cksum(), des_cbc_encrypt(), des_ecb_encrypt(),
-des_is_weak_key(), des_key_sched(), des_pcbc_encrypt(),
-des_quad_cksum(), des_random_key() and des_string_to_key()
-are available in the MIT Kerberos library;
-des_check_key_parity(), des_fixup_key_parity() and des_is_weak_key()
-are available in newer versions of that library.
-des_set_key_checked() and des_set_key_unchecked() were added in
 OpenSSL 0.9.5.
 des_generate_random_block(), des_init_random_number_generator(),
@@ -344,7 +328,7 @@ des_new_random_key(), des_set_random_generator_seed() and
 des_set_sequence_number() and des_rand_data() are used in newer
 versions of Kerberos but are not implemented here.
-des_random_key() generated cryptographically weak random data in
+DES_random_key() generated cryptographically weak random data in
 SSLeay and in OpenSSL prior version 0.9.5, as well as in the original
 MIT library.
diff --git a/src/lib/libssl/src/doc/crypto/DES_set_key.pod b/src/lib/libssl/src/doc/crypto/DES_set_key.pod
index 75638a149a..c0447b8bae 100644
--- a/src/lib/libssl/src/doc/crypto/DES_set_key.pod
+++ b/src/lib/libssl/src/doc/crypto/DES_set_key.pod
@@ -287,8 +287,6 @@ The L<evp(3)|evp(3)> library provides higher-level encryption functions.
 =head1 BUGS
-DES_3cbc_encrypt() is flawed and must not be used in applications.
 DES_cbc_encrypt() does not modify B<ivec>; use DES_ncbc_encrypt()
 instead.
@@ -310,33 +308,19 @@ The same applies for DES_string_to_2key().
 ANSI X3.106
-The B<des> library was written to be source code compatible with
+The B<des> library was initially written to be source code compatible with
 the MIT Kerberos library.
 =head1 SEE ALSO
-crypt(3), L<des_modes(7)|des_modes(7)>, L<evp(3)|evp(3)>, L<rand(3)|rand(3)>
+crypt(3), L<evp(3)|evp(3)>, L<rand(3)|rand(3)>
 =head1 HISTORY
 In OpenSSL 0.9.7, all des_ functions were renamed to DES_ to avoid
-clashes with older versions of libdes.  Compatibility des_ functions
+clashes with older versions of libdes.
-are provided for a short while, as well as crypt().
-Declarations for these are in <openssl/des_old.h>. There is no DES_
+DES_set_key_checked() and DES_set_key_unchecked() were added in
-variant for des_random_seed().
-This will happen to other functions
-as well if they are deemed redundant (des_random_seed() just calls
-RAND_seed() and is present for backward compatibility only), buggy or
-already scheduled for removal.
-des_cbc_cksum(), des_cbc_encrypt(), des_ecb_encrypt(),
-des_is_weak_key(), des_key_sched(), des_pcbc_encrypt(),
-des_quad_cksum(), des_random_key() and des_string_to_key()
-are available in the MIT Kerberos library;
-des_check_key_parity(), des_fixup_key_parity() and des_is_weak_key()
-are available in newer versions of that library.
-des_set_key_checked() and des_set_key_unchecked() were added in
 OpenSSL 0.9.5.
 des_generate_random_block(), des_init_random_number_generator(),
@@ -344,7 +328,7 @@ des_new_random_key(), des_set_random_generator_seed() and
 des_set_sequence_number() and des_rand_data() are used in newer
 versions of Kerberos but are not implemented here.
-des_random_key() generated cryptographically weak random data in
+DES_random_key() generated cryptographically weak random data in
 SSLeay and in OpenSSL prior version 0.9.5, as well as in the original
 MIT library.
author	miod <>	2014-07-10 13:38:52 +0000
committer	miod <>	2014-07-10 13:38:52 +0000
commit	1082a058669965dec6fa4446b8d1067628bb8e91 (patch)
tree	a427912b8208a12fc7a310e0112c4fbd505b945e /src
parent	281172858344f625c73e08f7af61073307e2d0b0 (diff)
download	openbsd-1082a058669965dec6fa4446b8d1067628bb8e91.tar.gz openbsd-1082a058669965dec6fa4446b8d1067628bb8e91.tar.bz2 openbsd-1082a058669965dec6fa4446b8d1067628bb8e91.zip

diff --git a/src/lib/libcrypto/doc/DES_set_key.pod b/src/lib/libcrypto/doc/DES_set_key.pod index 75638a149a..c0447b8bae 100644 --- a/src/lib/libcrypto/doc/DES_set_key.pod +++ b/src/lib/libcrypto/doc/DES_set_key.pod
@@ -287,8 +287,6 @@ The L<evp(3)\|evp(3)> library provides higher-level encryption functions.
287		287
288	=head1 BUGS	288	=head1 BUGS
289		289
290	DES_3cbc_encrypt() is flawed and must not be used in applications.
291
292	DES_cbc_encrypt() does not modify B<ivec>; use DES_ncbc_encrypt()	290	DES_cbc_encrypt() does not modify B<ivec>; use DES_ncbc_encrypt()
293	instead.	291	instead.
294		292
@@ -310,33 +308,19 @@ The same applies for DES_string_to_2key().
310		308
311	ANSI X3.106	309	ANSI X3.106
312		310
313	The B<des> library was written to be source code compatible with	311	The B<des> library was initially written to be source code compatible with
314	the MIT Kerberos library.	312	the MIT Kerberos library.
315		313
316	=head1 SEE ALSO	314	=head1 SEE ALSO
317		315
318	crypt(3), L<des_modes(7)\|des_modes(7)>, L<evp(3)\|evp(3)>, L<rand(3)\|rand(3)>	316	crypt(3), L<evp(3)\|evp(3)>, L<rand(3)\|rand(3)>
319		317
320	=head1 HISTORY	318	=head1 HISTORY
321		319
322	In OpenSSL 0.9.7, all des_ functions were renamed to DES_ to avoid	320	In OpenSSL 0.9.7, all des_ functions were renamed to DES_ to avoid
323	clashes with older versions of libdes. Compatibility des_ functions	321	clashes with older versions of libdes.
324	are provided for a short while, as well as crypt().	322
325	Declarations for these are in <openssl/des_old.h>. There is no DES_	323	DES_set_key_checked() and DES_set_key_unchecked() were added in
326	variant for des_random_seed().
327	This will happen to other functions
328	as well if they are deemed redundant (des_random_seed() just calls
329	RAND_seed() and is present for backward compatibility only), buggy or
330	already scheduled for removal.
331
332	des_cbc_cksum(), des_cbc_encrypt(), des_ecb_encrypt(),
333	des_is_weak_key(), des_key_sched(), des_pcbc_encrypt(),
334	des_quad_cksum(), des_random_key() and des_string_to_key()
335	are available in the MIT Kerberos library;
336	des_check_key_parity(), des_fixup_key_parity() and des_is_weak_key()
337	are available in newer versions of that library.
338
339	des_set_key_checked() and des_set_key_unchecked() were added in
340	OpenSSL 0.9.5.	324	OpenSSL 0.9.5.
341		325
342	des_generate_random_block(), des_init_random_number_generator(),	326	des_generate_random_block(), des_init_random_number_generator(),
@@ -344,7 +328,7 @@ des_new_random_key(), des_set_random_generator_seed() and
344	des_set_sequence_number() and des_rand_data() are used in newer	328	des_set_sequence_number() and des_rand_data() are used in newer
345	versions of Kerberos but are not implemented here.	329	versions of Kerberos but are not implemented here.
346		330
347	des_random_key() generated cryptographically weak random data in	331	DES_random_key() generated cryptographically weak random data in
348	SSLeay and in OpenSSL prior version 0.9.5, as well as in the original	332	SSLeay and in OpenSSL prior version 0.9.5, as well as in the original
349	MIT library.	333	MIT library.
350		334


diff --git a/src/lib/libssl/src/doc/crypto/DES_set_key.pod b/src/lib/libssl/src/doc/crypto/DES_set_key.pod index 75638a149a..c0447b8bae 100644 --- a/src/lib/libssl/src/doc/crypto/DES_set_key.pod +++ b/src/lib/libssl/src/doc/crypto/DES_set_key.pod
@@ -287,8 +287,6 @@ The L<evp(3)\|evp(3)> library provides higher-level encryption functions.
287		287
288	=head1 BUGS	288	=head1 BUGS
289		289
290	DES_3cbc_encrypt() is flawed and must not be used in applications.
291
292	DES_cbc_encrypt() does not modify B<ivec>; use DES_ncbc_encrypt()	290	DES_cbc_encrypt() does not modify B<ivec>; use DES_ncbc_encrypt()
293	instead.	291	instead.
294		292
@@ -310,33 +308,19 @@ The same applies for DES_string_to_2key().
310		308
311	ANSI X3.106	309	ANSI X3.106
312		310
313	The B<des> library was written to be source code compatible with	311	The B<des> library was initially written to be source code compatible with
314	the MIT Kerberos library.	312	the MIT Kerberos library.
315		313
316	=head1 SEE ALSO	314	=head1 SEE ALSO
317		315
318	crypt(3), L<des_modes(7)\|des_modes(7)>, L<evp(3)\|evp(3)>, L<rand(3)\|rand(3)>	316	crypt(3), L<evp(3)\|evp(3)>, L<rand(3)\|rand(3)>
319		317
320	=head1 HISTORY	318	=head1 HISTORY
321		319
322	In OpenSSL 0.9.7, all des_ functions were renamed to DES_ to avoid	320	In OpenSSL 0.9.7, all des_ functions were renamed to DES_ to avoid
323	clashes with older versions of libdes. Compatibility des_ functions	321	clashes with older versions of libdes.
324	are provided for a short while, as well as crypt().	322
325	Declarations for these are in <openssl/des_old.h>. There is no DES_	323	DES_set_key_checked() and DES_set_key_unchecked() were added in
326	variant for des_random_seed().
327	This will happen to other functions
328	as well if they are deemed redundant (des_random_seed() just calls
329	RAND_seed() and is present for backward compatibility only), buggy or
330	already scheduled for removal.
331
332	des_cbc_cksum(), des_cbc_encrypt(), des_ecb_encrypt(),
333	des_is_weak_key(), des_key_sched(), des_pcbc_encrypt(),
334	des_quad_cksum(), des_random_key() and des_string_to_key()
335	are available in the MIT Kerberos library;
336	des_check_key_parity(), des_fixup_key_parity() and des_is_weak_key()
337	are available in newer versions of that library.
338
339	des_set_key_checked() and des_set_key_unchecked() were added in
340	OpenSSL 0.9.5.	324	OpenSSL 0.9.5.
341		325
342	des_generate_random_block(), des_init_random_number_generator(),	326	des_generate_random_block(), des_init_random_number_generator(),
@@ -344,7 +328,7 @@ des_new_random_key(), des_set_random_generator_seed() and
344	des_set_sequence_number() and des_rand_data() are used in newer	328	des_set_sequence_number() and des_rand_data() are used in newer
345	versions of Kerberos but are not implemented here.	329	versions of Kerberos but are not implemented here.
346		330
347	des_random_key() generated cryptographically weak random data in	331	DES_random_key() generated cryptographically weak random data in
348	SSLeay and in OpenSSL prior version 0.9.5, as well as in the original	332	SSLeay and in OpenSSL prior version 0.9.5, as well as in the original
349	MIT library.	333	MIT library.
350		334