[openssl-commits] [openssl] OpenSSL_1_0_2-stable update
Rich Salz
rsalz at openssl.org
Fri Aug 19 15:45:53 UTC 2016
The branch OpenSSL_1_0_2-stable has been updated
via ff5537c25565ad288ef00d67120b479c615bc6d3 (commit)
from a03f81f4ead24c234dc26e388d86a352685f3948 (commit)
- Log -----------------------------------------------------------------
commit ff5537c25565ad288ef00d67120b479c615bc6d3
Author: Rich Salz <rsalz at openssl.org>
Date: Sat Aug 13 10:47:50 2016 -0400
RT3940: For now, just document the issue.
Reviewed-by: Richard Levitte <levitte at openssl.org>
(cherry picked from commit 2a9afa4046592d44af84644cd89fe1a0d6d46889)
-----------------------------------------------------------------------
Summary of changes:
doc/apps/cms.pod | 3 +++
doc/apps/smime.pod | 3 +++
2 files changed, 6 insertions(+)
diff --git a/doc/apps/cms.pod b/doc/apps/cms.pod
index 4eaedbc..ac69804 100644
--- a/doc/apps/cms.pod
+++ b/doc/apps/cms.pod
@@ -86,6 +86,9 @@ encrypt mail for the given recipient certificates. Input file is the message
to be encrypted. The output file is the encrypted mail in MIME format. The
actual CMS type is <B>EnvelopedData<B>.
+Note that no revocation check is done for the recipient cert, so if that
+key has been compromised, others may be able to decrypt the text.
+
=item B<-decrypt>
decrypt mail using the supplied certificate and private key. Expects an
diff --git a/doc/apps/smime.pod b/doc/apps/smime.pod
index d5618c8..04a83ca 100644
--- a/doc/apps/smime.pod
+++ b/doc/apps/smime.pod
@@ -53,6 +53,9 @@ The meaning of the other options varies according to the operation type.
encrypt mail for the given recipient certificates. Input file is the message
to be encrypted. The output file is the encrypted mail in MIME format.
+Note that no revocation check is done for the recipient cert, so if that
+key has been compromised, others may be able to decrypt the text.
+
=item B<-decrypt>
decrypt mail using the supplied certificate and private key. Expects an
More information about the openssl-commits
mailing list