[openssl-commits] [openssl] OpenSSL_1_1_0-stable update
Matt Caswell
matt at openssl.org
Thu May 25 14:36:26 UTC 2017
The branch OpenSSL_1_1_0-stable has been updated
via e6ec6773c4ad10d6b4f260b3a2086547f2153ef1 (commit)
from b9ff4ec746daafe520e36c1489a2f843401ab140 (commit)
- Log -----------------------------------------------------------------
commit e6ec6773c4ad10d6b4f260b3a2086547f2153ef1
Author: Matt Caswell <matt at openssl.org>
Date: Thu May 25 15:18:22 2017 +0100
Document that HMAC() with a NULL md is not thread safe
Fixes #3541
Reviewed-by: Rich Salz <rsalz at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3554)
-----------------------------------------------------------------------
Summary of changes:
doc/crypto/HMAC.pod | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/doc/crypto/HMAC.pod b/doc/crypto/HMAC.pod
index 87f7e33..219c9ba 100644
--- a/doc/crypto/HMAC.pod
+++ b/doc/crypto/HMAC.pod
@@ -57,7 +57,8 @@ B<key_len> bytes long.
It places the result in B<md> (which must have space for the output of
the hash function, which is no more than B<EVP_MAX_MD_SIZE> bytes).
If B<md> is NULL, the digest is placed in a static array. The size of
-the output is placed in B<md_len>, unless it is B<NULL>.
+the output is placed in B<md_len>, unless it is B<NULL>. Note: passing a NULL
+value for B<md> to use the static array is not thread safe.
B<evp_md> can be EVP_sha1(), EVP_ripemd160() etc.
More information about the openssl-commits
mailing list