1 files changed, 8 insertions, 36 deletions
diff --git a/src/lib/libcrypto/man/RSA_set_method.3 b/src/lib/libcrypto/man/RSA_set_method.3
index 818b64823d..ffe22c116f 100644
--- a/src/lib/libcrypto/man/RSA_set_method.3
+++ b/src/lib/libcrypto/man/RSA_set_method.3
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: RSA_set_method.3,v 1.17 2023/05/14 09:33:19 tb Exp $
+.\"     $OpenBSD: RSA_set_method.3,v 1.18 2023/11/19 10:34:26 tb Exp $
 .\"     OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
 .\"
 .\" This file was written by Ulf Moeller <ulf@openssl.org>
@@ -50,7 +50,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: May 14 2023 $
+.Dd $Mdocdate: November 19 2023 $
 .Dt RSA_SET_METHOD 3
 .Os
 .Sh NAME
@@ -105,16 +105,9 @@ selects
 as the default method for all
 .Vt RSA
 structures created later.
-If any
-.Vt ENGINE
-was registered with
-.Xr ENGINE_register_RSA 3
-that can be successfully initialized, it overrides the default.
 .Pp
 .Fn RSA_get_default_method
-returns a pointer to the current default method,
+returns a pointer to the current default method.
-even if it is actually overridden by an
-.Vt ENGINE .
 .Pp
 .Fn RSA_set_method
 selects
@@ -127,10 +120,7 @@ used by the RSA key, calling the
 .Fa finish
 function set up with
 .Xr RSA_meth_set_finish 3
-if any, and if the previous method was supplied by an
+if any.
-.Vt ENGINE ,
-.Xr ENGINE_finish 3
-is called on it.
 If
 .Fa meth
 contains an
@@ -142,9 +132,7 @@ that function is called just before returning from
 .Pp
 It is possible to have RSA keys that only work with certain
 .Vt RSA_METHOD
-implementations (e.g. from an
+implementations,
-.Vt ENGINE
-module that supports embedded hardware-protected keys),
 and in such cases attempting to change the
 .Vt RSA_METHOD
 for the key can have unexpected results.
@@ -154,12 +142,6 @@ returns a pointer to the
 .Vt RSA_METHOD
 being used by
 .Fa rsa .
-This method may or may not be supplied by an
-.Vt ENGINE
-implementation but if it is, the return value can only be guaranteed
-to be valid as long as the RSA key itself is valid and does not
-have its implementation changed by
-.Fn RSA_set_method .
 .Pp
 The misleadingly named function
 .Fn RSA_flags
@@ -178,17 +160,10 @@ section for more details.
 .Fn RSA_new_method
 allocates and initializes an
 .Vt RSA
-structure so that
+structure.
-.Fa engine
+The
-is used for the RSA operations.
-If
 .Fa engine
-is
+argument is ignored and
-.Dv NULL ,
-.Xr ENGINE_get_default_RSA 3
-is used.
-If that returns
-.Dv NULL ,
 the default method controlled by
 .Fn RSA_set_default_method
 is used.
@@ -224,9 +199,6 @@ and sets an error code that can be obtained by
 if the allocation fails.
 Otherwise it returns a pointer to the newly allocated structure.
 .Sh SEE ALSO
-.Xr ENGINE_get_default_RSA 3 ,
-.Xr ENGINE_register_RSA 3 ,
-.Xr ENGINE_set_default_RSA 3 ,
 .Xr RSA_meth_new 3 ,
 .Xr RSA_new 3
 .Sh HISTORY

diff --git a/src/lib/libcrypto/man/RSA_set_method.3 b/src/lib/libcrypto/man/RSA_set_method.3 index 818b64823d..ffe22c116f 100644 --- a/src/lib/libcrypto/man/RSA_set_method.3 +++ b/src/lib/libcrypto/man/RSA_set_method.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: RSA_set_method.3,v 1.17 2023/05/14 09:33:19 tb Exp $	1	.\" $OpenBSD: RSA_set_method.3,v 1.18 2023/11/19 10:34:26 tb Exp $
2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400	2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
3	.\"	3	.\"
4	.\" This file was written by Ulf Moeller <ulf@openssl.org>	4	.\" This file was written by Ulf Moeller <ulf@openssl.org>
@@ -50,7 +50,7 @@
50	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	50	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
51	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	51	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
52	.\"	52	.\"
53	.Dd $Mdocdate: May 14 2023 $	53	.Dd $Mdocdate: November 19 2023 $
54	.Dt RSA_SET_METHOD 3	54	.Dt RSA_SET_METHOD 3
55	.Os	55	.Os
56	.Sh NAME	56	.Sh NAME
@@ -105,16 +105,9 @@ selects
105	as the default method for all	105	as the default method for all
106	.Vt RSA	106	.Vt RSA
107	structures created later.	107	structures created later.
108	If any
109	.Vt ENGINE
110	was registered with
111	.Xr ENGINE_register_RSA 3
112	that can be successfully initialized, it overrides the default.
113	.Pp	108	.Pp
114	.Fn RSA_get_default_method	109	.Fn RSA_get_default_method
115	returns a pointer to the current default method,	110	returns a pointer to the current default method.
116	even if it is actually overridden by an
117	.Vt ENGINE .
118	.Pp	111	.Pp
119	.Fn RSA_set_method	112	.Fn RSA_set_method
120	selects	113	selects
@@ -127,10 +120,7 @@ used by the RSA key, calling the
127	.Fa finish	120	.Fa finish
128	function set up with	121	function set up with
129	.Xr RSA_meth_set_finish 3	122	.Xr RSA_meth_set_finish 3
130	if any, and if the previous method was supplied by an	123	if any.
131	.Vt ENGINE ,
132	.Xr ENGINE_finish 3
133	is called on it.
134	If	124	If
135	.Fa meth	125	.Fa meth
136	contains an	126	contains an
@@ -142,9 +132,7 @@ that function is called just before returning from
142	.Pp	132	.Pp
143	It is possible to have RSA keys that only work with certain	133	It is possible to have RSA keys that only work with certain
144	.Vt RSA_METHOD	134	.Vt RSA_METHOD
145	implementations (e.g. from an	135	implementations,
146	.Vt ENGINE
147	module that supports embedded hardware-protected keys),
148	and in such cases attempting to change the	136	and in such cases attempting to change the
149	.Vt RSA_METHOD	137	.Vt RSA_METHOD
150	for the key can have unexpected results.	138	for the key can have unexpected results.
@@ -154,12 +142,6 @@ returns a pointer to the
154	.Vt RSA_METHOD	142	.Vt RSA_METHOD
155	being used by	143	being used by
156	.Fa rsa .	144	.Fa rsa .
157	This method may or may not be supplied by an
158	.Vt ENGINE
159	implementation but if it is, the return value can only be guaranteed
160	to be valid as long as the RSA key itself is valid and does not
161	have its implementation changed by
162	.Fn RSA_set_method .
163	.Pp	145	.Pp
164	The misleadingly named function	146	The misleadingly named function
165	.Fn RSA_flags	147	.Fn RSA_flags
@@ -178,17 +160,10 @@ section for more details.
178	.Fn RSA_new_method	160	.Fn RSA_new_method
179	allocates and initializes an	161	allocates and initializes an
180	.Vt RSA	162	.Vt RSA
181	structure so that	163	structure.
182	.Fa engine	164	The
183	is used for the RSA operations.
184	If
185	.Fa engine	165	.Fa engine
186	is	166	argument is ignored and
187	.Dv NULL ,
188	.Xr ENGINE_get_default_RSA 3
189	is used.
190	If that returns
191	.Dv NULL ,
192	the default method controlled by	167	the default method controlled by
193	.Fn RSA_set_default_method	168	.Fn RSA_set_default_method
194	is used.	169	is used.
@@ -224,9 +199,6 @@ and sets an error code that can be obtained by
224	if the allocation fails.	199	if the allocation fails.
225	Otherwise it returns a pointer to the newly allocated structure.	200	Otherwise it returns a pointer to the newly allocated structure.
226	.Sh SEE ALSO	201	.Sh SEE ALSO
227	.Xr ENGINE_get_default_RSA 3 ,
228	.Xr ENGINE_register_RSA 3 ,
229	.Xr ENGINE_set_default_RSA 3 ,
230	.Xr RSA_meth_new 3 ,	202	.Xr RSA_meth_new 3 ,
231	.Xr RSA_new 3	203	.Xr RSA_new 3
232	.Sh HISTORY	204	.Sh HISTORY