From: tb Date: Tue, 11 May 2021 18:57:17 +0000 (+0000) Subject: Merge some details from OpenSSL 1.1.1. X-Git-Url: http://artulab.com/gitweb/?a=commitdiff_plain;h=cd63d8167a0742693ed40aeb277e6de0d5874510;p=openbsd Merge some details from OpenSSL 1.1.1. --- diff --git a/lib/libcrypto/man/EVP_DigestSignInit.3 b/lib/libcrypto/man/EVP_DigestSignInit.3 index 8f5f99f940a..d5d85dd4116 100644 --- a/lib/libcrypto/man/EVP_DigestSignInit.3 +++ b/lib/libcrypto/man/EVP_DigestSignInit.3 @@ -1,4 +1,4 @@ -.\" $OpenBSD: EVP_DigestSignInit.3,v 1.8 2021/05/11 15:14:56 tb Exp $ +.\" $OpenBSD: EVP_DigestSignInit.3,v 1.9 2021/05/11 18:57:17 tb Exp $ .\" OpenSSL 9b86974e Aug 17 15:21:33 2015 -0400 .\" .\" This file was written by Dr. Stephen Henson . @@ -89,7 +89,7 @@ .Fa "size_t tbslen" .Fc .Sh DESCRIPTION -The EVP signature routines are a high level interface to digital +The EVP signature routines are a high-level interface to digital signatures. .Pp .Fn EVP_DigestSignInit @@ -115,6 +115,15 @@ the of the signing operation will be written to .Pf * Fa pctx : this can be used to set alternative signing options. +Any existing value in +.Pf * Fa pctx +will be overwritten. +The +.Vt EVP_PKEY_CTX +value returned must not be freed directly by the application. +It will be freed automatically when the +.Vt EVP_MD_CTX +is freed. .Pp .Fn EVP_DigestSignUpdate hashes @@ -176,7 +185,7 @@ and .\" it is the only way to sign data. .Pp The EVP interface to digital signatures should almost always be -used in preference to the low level interfaces. +used in preference to the low-level interfaces. This is because the code then becomes transparent to the algorithm used and much more flexible. .Pp diff --git a/lib/libcrypto/man/EVP_DigestVerifyInit.3 b/lib/libcrypto/man/EVP_DigestVerifyInit.3 index b91d1fb06a1..b80a29299c5 100644 --- a/lib/libcrypto/man/EVP_DigestVerifyInit.3 +++ b/lib/libcrypto/man/EVP_DigestVerifyInit.3 @@ -1,4 +1,4 @@ -.\" $OpenBSD: EVP_DigestVerifyInit.3,v 1.10 2021/05/11 15:31:13 tb Exp $ +.\" $OpenBSD: EVP_DigestVerifyInit.3,v 1.11 2021/05/11 18:57:17 tb Exp $ .\" OpenSSL fb552ac6 Sep 30 23:43:01 2009 +0000 .\" .\" This file was written by Dr. Stephen Henson . @@ -89,7 +89,7 @@ .Fa "size_t *tbslen" .Fc .Sh DESCRIPTION -The EVP signature routines are a high level interface to digital +The EVP signature routines are a high-level interface to digital signatures. .Pp .Fn EVP_DigestVerifyInit @@ -115,6 +115,15 @@ the of the verification operation will be written to .Pf * Fa pctx : this can be used to set alternative verification options. +Any existing value in +.Pf * .Fa pctx +is overwritten. +The +.Vt EVP_PKEY_CTX +value returned must not be freed directly by the application. +It will be freed automatically when the +.Vt EVP_MD_CTX +is freed. .Pp .Fn EVP_DigestVerifyUpdate hashes @@ -144,7 +153,7 @@ bytes at against the signature in .Fa sig of length -.Fa siglen +.Fa siglen . .Fn EVP_DigestVerify is a one shot operation which verifies a single block of data in one function call.