1 files changed, 0 insertions, 191 deletions
diff --git a/src/lib/libcrypto/man/CMS_encrypt.3 b/src/lib/libcrypto/man/CMS_encrypt.3
deleted file mode 100644
index 03d8b4edbb..0000000000
--- a/src/lib/libcrypto/man/CMS_encrypt.3
+++ /dev/null
@@ -1,191 +0,0 @@
-.\" $OpenBSD: CMS_encrypt.3,v 1.7 2019/11/02 15:39:46 schwarze Exp $
-.\" full merge up to: OpenSSL 83cf7abf May 29 13:07:08 2018 +0100
-.\"
-.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
-.\" Copyright (c) 2008 The OpenSSL Project.  All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\"
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\"
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in
-.\"    the documentation and/or other materials provided with the
-.\"    distribution.
-.\"
-.\" 3. All advertising materials mentioning features or use of this
-.\"    software must display the following acknowledgment:
-.\"    "This product includes software developed by the OpenSSL Project
-.\"    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
-.\"
-.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
-.\"    endorse or promote products derived from this software without
-.\"    prior written permission. For written permission, please contact
-.\"    openssl-core@openssl.org.
-.\"
-.\" 5. Products derived from this software may not be called "OpenSSL"
-.\"    nor may "OpenSSL" appear in their names without prior written
-.\"    permission of the OpenSSL Project.
-.\"
-.\" 6. Redistributions of any form whatsoever must retain the following
-.\"    acknowledgment:
-.\"    "This product includes software developed by the OpenSSL Project
-.\"    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
-.\"
-.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
-.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
-.\" PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
-.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
-.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
-.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
-.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
-.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-.\" OF THE POSSIBILITY OF SUCH DAMAGE.
-.\"
-.Dd $Mdocdate: November 2 2019 $
-.Dt CMS_ENCRYPT 3
-.Os
-.Sh NAME
-.Nm CMS_encrypt
-.Nd create a CMS EnvelopedData structure
-.Sh SYNOPSIS
-.In openssl/cms.h
-.Ft CMS_ContentInfo *
-.Fo CMS_encrypt
-.Fa "STACK_OF(X509) *certificates"
-.Fa "BIO *in"
-.Fa "const EVP_CIPHER *cipher"
-.Fa "unsigned int flags"
-.Fc
-.Sh DESCRIPTION
-.Fn CMS_encrypt
-creates a CMS
-.Vt EnvelopedData
-structure, encrypting the content provided by
-.Fa in .
-.Pp
-The recipient
-.Fa certificates
-are added as
-.Vt KeyTransRecipientInfo
-structures by calling the function
-.Xr CMS_add1_recipient_cert 3
-internally.
-Only certificates carrying RSA, Diffie-Hellman or EC keys are supported
-by this function.
-The
-.Fa certificates
-argument can be set to
-.Dv NULL
-if the
-.Dv CMS_PARTIAL
-flag is set and recipients are added later using
-.Xr CMS_add1_recipient_cert 3
-or
-.Xr CMS_add0_recipient_key 3 .
-.Pp
-.Fa cipher
-is the symmetric cipher to use.
-It must support ASN.1 encoding of its parameters.
-.Xr EVP_des_ede3_cbc 3
-(triple DES) is the algorithm of choice for S/MIME use because most
-clients support it.
-.Pp
-Many browsers implement a "sign and encrypt" option which is simply an
-S/MIME
-.Vt EnvelopedData
-containing an S/MIME signed message.
-This can be readily produced by storing the S/MIME signed message in a
-memory BIO and passing it to
-.Fn CMS_encrypt .
-.Pp
-The following flags can be passed in the
-.Fa flags
-parameter:
-.Bl -tag -width Ds
-.It Dv CMS_TEXT
-MIME headers for type text/plain are prepended to the data.
-.It Dv CMS_BINARY
-Do not translate the supplied content into MIME canonical format
-even though that is required by the S/MIME specifications.
-This option should be used if the supplied data is in binary format.
-Otherwise, the translation will corrupt it.
-If
-.Dv CMS_BINARY
-is set, then
-.Dv CMS_TEXT
-is ignored.
-.It Dv CMS_USE_KEYID
-Use the subject key identifier value to identify recipient certificates.
-An error occurs if all recipient certificates do not have a subject key
-identifier extension.
-By default, issuer name and serial number are used instead.
-.It Dv CMS_STREAM
-Return a partial
-.Vt CMS_ContentInfo
-structure suitable for streaming I/O: no data is read from the BIO
-.Fa in .
-Several functions including
-.Xr SMIME_write_CMS 3 ,
-.Xr i2d_CMS_bio_stream 3 ,
-or
-.Xr PEM_write_bio_CMS_stream 3
-can be used  to finalize the structure.
-Alternatively, finalization can be performed by obtaining the streaming
-ASN1
-.Vt BIO
-directly using
-.Xr BIO_new_CMS 3 .
-Outputting the content of the returned
-.Vt CMS_ContentInfo
-structure via a function that does not properly finalize it
-will give unpredictable results.
-.It Dv CMS_PARTIAL
-Return a partial
-.Vt CMS_ContentInfo
-structure to which additional recipients and attributes can
-be added before finalization.
-.It Dv CMS_DETACHED
-Omit the data being encrypted from the
-.Vt CMS_ContentInfo
-structure.
-This is rarely used in practice and is not supported by
-.Xr SMIME_write_CMS 3 .
-.El
-.Sh RETURN VALUES
-.Fn CMS_encrypt
-returns either a
-.Vt CMS_ContentInfo
-structure or
-.Dv NULL
-if an error occurred.
-The error can be obtained from
-.Xr ERR_get_error 3 .
-.Sh SEE ALSO
-.Xr CMS_add0_cert 3 ,
-.Xr CMS_add1_recipient_cert 3 ,
-.Xr CMS_ContentInfo_new 3 ,
-.Xr CMS_decrypt 3
-.Sh STANDARDS
-RFC 5652: Cryptographic Message Syntax (CMS)
-.Bl -dash -compact -offset indent
-.It
-section 6.1: EnvelopedData Type
-.It
-section 6.2.1: KeyTransRecipientInfo Type
-.El
-.Sh HISTORY
-.Fn CMS_encrypt
-first appeared in OpenSSL 0.9.8h
-and has been available since
-.Ox 6.7 .
-.Pp
-The
-.Dv CMS_STREAM
-flag first appeared in OpenSSL 1.0.0.

diff --git a/src/lib/libcrypto/man/CMS_encrypt.3 b/src/lib/libcrypto/man/CMS_encrypt.3 deleted file mode 100644 index 03d8b4edbb..0000000000 --- a/src/lib/libcrypto/man/CMS_encrypt.3 +++ /dev/null
@@ -1,191 +0,0 @@
1	.\" $OpenBSD: CMS_encrypt.3,v 1.7 2019/11/02 15:39:46 schwarze Exp $
2	.\" full merge up to: OpenSSL 83cf7abf May 29 13:07:08 2018 +0100
3	.\"
4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
5	.\" Copyright (c) 2008 The OpenSSL Project. All rights reserved.
6	.\"
7	.\" Redistribution and use in source and binary forms, with or without
8	.\" modification, are permitted provided that the following conditions
9	.\" are met:
10	.\"
11	.\" 1. Redistributions of source code must retain the above copyright
12	.\" notice, this list of conditions and the following disclaimer.
13	.\"
14	.\" 2. Redistributions in binary form must reproduce the above copyright
15	.\" notice, this list of conditions and the following disclaimer in
16	.\" the documentation and/or other materials provided with the
17	.\" distribution.
18	.\"
19	.\" 3. All advertising materials mentioning features or use of this
20	.\" software must display the following acknowledgment:
21	.\" "This product includes software developed by the OpenSSL Project
22	.\" for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
23	.\"
24	.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
25	.\" endorse or promote products derived from this software without
26	.\" prior written permission. For written permission, please contact
27	.\" openssl-core@openssl.org.
28	.\"
29	.\" 5. Products derived from this software may not be called "OpenSSL"
30	.\" nor may "OpenSSL" appear in their names without prior written
31	.\" permission of the OpenSSL Project.
32	.\"
33	.\" 6. Redistributions of any form whatsoever must retain the following
34	.\" acknowledgment:
35	.\" "This product includes software developed by the OpenSSL Project
36	.\" for use in the OpenSSL Toolkit (http://www.openssl.org/)"
37	.\"
38	.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
39	.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
40	.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
41	.\" PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
42	.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
43	.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
44	.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
45	.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
46	.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
47	.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50	.\"
51	.Dd $Mdocdate: November 2 2019 $
52	.Dt CMS_ENCRYPT 3
53	.Os
54	.Sh NAME
55	.Nm CMS_encrypt
56	.Nd create a CMS EnvelopedData structure
57	.Sh SYNOPSIS
58	.In openssl/cms.h
59	.Ft CMS_ContentInfo *
60	.Fo CMS_encrypt
61	.Fa "STACK_OF(X509) *certificates"
62	.Fa "BIO *in"
63	.Fa "const EVP_CIPHER *cipher"
64	.Fa "unsigned int flags"
65	.Fc
66	.Sh DESCRIPTION
67	.Fn CMS_encrypt
68	creates a CMS
69	.Vt EnvelopedData
70	structure, encrypting the content provided by
71	.Fa in .
72	.Pp
73	The recipient
74	.Fa certificates
75	are added as
76	.Vt KeyTransRecipientInfo
77	structures by calling the function
78	.Xr CMS_add1_recipient_cert 3
79	internally.
80	Only certificates carrying RSA, Diffie-Hellman or EC keys are supported
81	by this function.
82	The
83	.Fa certificates
84	argument can be set to
85	.Dv NULL
86	if the
87	.Dv CMS_PARTIAL
88	flag is set and recipients are added later using
89	.Xr CMS_add1_recipient_cert 3
90	or
91	.Xr CMS_add0_recipient_key 3 .
92	.Pp
93	.Fa cipher
94	is the symmetric cipher to use.
95	It must support ASN.1 encoding of its parameters.
96	.Xr EVP_des_ede3_cbc 3
97	(triple DES) is the algorithm of choice for S/MIME use because most
98	clients support it.
99	.Pp
100	Many browsers implement a "sign and encrypt" option which is simply an
101	S/MIME
102	.Vt EnvelopedData
103	containing an S/MIME signed message.
104	This can be readily produced by storing the S/MIME signed message in a
105	memory BIO and passing it to
106	.Fn CMS_encrypt .
107	.Pp
108	The following flags can be passed in the
109	.Fa flags
110	parameter:
111	.Bl -tag -width Ds
112	.It Dv CMS_TEXT
113	MIME headers for type text/plain are prepended to the data.
114	.It Dv CMS_BINARY
115	Do not translate the supplied content into MIME canonical format
116	even though that is required by the S/MIME specifications.
117	This option should be used if the supplied data is in binary format.
118	Otherwise, the translation will corrupt it.
119	If
120	.Dv CMS_BINARY
121	is set, then
122	.Dv CMS_TEXT
123	is ignored.
124	.It Dv CMS_USE_KEYID
125	Use the subject key identifier value to identify recipient certificates.
126	An error occurs if all recipient certificates do not have a subject key
127	identifier extension.
128	By default, issuer name and serial number are used instead.
129	.It Dv CMS_STREAM
130	Return a partial
131	.Vt CMS_ContentInfo
132	structure suitable for streaming I/O: no data is read from the BIO
133	.Fa in .
134	Several functions including
135	.Xr SMIME_write_CMS 3 ,
136	.Xr i2d_CMS_bio_stream 3 ,
137	or
138	.Xr PEM_write_bio_CMS_stream 3
139	can be used to finalize the structure.
140	Alternatively, finalization can be performed by obtaining the streaming
141	ASN1
142	.Vt BIO
143	directly using
144	.Xr BIO_new_CMS 3 .
145	Outputting the content of the returned
146	.Vt CMS_ContentInfo
147	structure via a function that does not properly finalize it
148	will give unpredictable results.
149	.It Dv CMS_PARTIAL
150	Return a partial
151	.Vt CMS_ContentInfo
152	structure to which additional recipients and attributes can
153	be added before finalization.
154	.It Dv CMS_DETACHED
155	Omit the data being encrypted from the
156	.Vt CMS_ContentInfo
157	structure.
158	This is rarely used in practice and is not supported by
159	.Xr SMIME_write_CMS 3 .
160	.El
161	.Sh RETURN VALUES
162	.Fn CMS_encrypt
163	returns either a
164	.Vt CMS_ContentInfo
165	structure or
166	.Dv NULL
167	if an error occurred.
168	The error can be obtained from
169	.Xr ERR_get_error 3 .
170	.Sh SEE ALSO
171	.Xr CMS_add0_cert 3 ,
172	.Xr CMS_add1_recipient_cert 3 ,
173	.Xr CMS_ContentInfo_new 3 ,
174	.Xr CMS_decrypt 3
175	.Sh STANDARDS
176	RFC 5652: Cryptographic Message Syntax (CMS)
177	.Bl -dash -compact -offset indent
178	.It
179	section 6.1: EnvelopedData Type
180	.It
181	section 6.2.1: KeyTransRecipientInfo Type
182	.El
183	.Sh HISTORY
184	.Fn CMS_encrypt
185	first appeared in OpenSSL 0.9.8h
186	and has been available since
187	.Ox 6.7 .
188	.Pp
189	The
190	.Dv CMS_STREAM
191	flag first appeared in OpenSSL 1.0.0.