[openssl-commits] [openssl] master update

Rich Salz rsalz at openssl.org
Fri Aug 19 15:45:26 UTC 2016


The branch master has been updated
       via  2a9afa4046592d44af84644cd89fe1a0d6d46889 (commit)
      from  0556f2aa4302b4262a58a7c4bfcb337530597822 (commit)


- Log -----------------------------------------------------------------
commit 2a9afa4046592d44af84644cd89fe1a0d6d46889
Author: Rich Salz <rsalz at openssl.org>
Date:   Sat Aug 13 10:47:50 2016 -0400

    RT3940: For now, just document the issue.
    
    Reviewed-by: Richard Levitte <levitte at openssl.org>

-----------------------------------------------------------------------

Summary of changes:
 doc/apps/cms.pod   | 3 +++
 doc/apps/smime.pod | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/doc/apps/cms.pod b/doc/apps/cms.pod
index b654613..d5529be 100644
--- a/doc/apps/cms.pod
+++ b/doc/apps/cms.pod
@@ -122,6 +122,9 @@ encrypt mail for the given recipient certificates. Input file is the message
 to be encrypted. The output file is the encrypted mail in MIME format. The
 actual CMS type is <B>EnvelopedData<B>.
 
+Note that no revocation check is done for the recipient cert, so if that
+key has been compromised, others may be able to decrypt the text.
+
 =item B<-decrypt>
 
 decrypt mail using the supplied certificate and private key. Expects an
diff --git a/doc/apps/smime.pod b/doc/apps/smime.pod
index 2c7661d..ba59eda 100644
--- a/doc/apps/smime.pod
+++ b/doc/apps/smime.pod
@@ -90,6 +90,9 @@ Print out a usage message.
 encrypt mail for the given recipient certificates. Input file is the message
 to be encrypted. The output file is the encrypted mail in MIME format.
 
+Note that no revocation check is done for the recipient cert, so if that
+key has been compromised, others may be able to decrypt the text.
+
 =item B<-decrypt>
 
 decrypt mail using the supplied certificate and private key. Expects an


More information about the openssl-commits mailing list