[openssl-commits] [openssl] OpenSSL_1_0_2-stable update

Matt Caswell matt at openssl.org
Thu May 25 14:37:13 UTC 2017

The branch OpenSSL_1_0_2-stable has been updated
       via  8a996d2a5530def2307548546cbc27db610c964d (commit)
      from  22d41cd348555ccf99ad9eaa2bf321764a2f81bb (commit)

- Log -----------------------------------------------------------------
commit 8a996d2a5530def2307548546cbc27db610c964d
Author: Matt Caswell <matt at openssl.org>
Date:   Thu May 25 15:18:22 2017 +0100

    Document that HMAC() with a NULL md is not thread safe
    Fixes #3541
    Reviewed-by: Rich Salz <rsalz at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/3555)


Summary of changes:
 doc/crypto/hmac.pod | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/doc/crypto/hmac.pod b/doc/crypto/hmac.pod
index 2c8f20a..ca9798a 100644
--- a/doc/crypto/hmac.pod
+++ b/doc/crypto/hmac.pod
@@ -38,7 +38,8 @@ B<key_len> bytes long.
 It places the result in B<md> (which must have space for the output of
 the hash function, which is no more than B<EVP_MAX_MD_SIZE> bytes).
 If B<md> is NULL, the digest is placed in a static array.  The size of
-the output is placed in B<md_len>, unless it is B<NULL>.
+the output is placed in B<md_len>, unless it is B<NULL>. Note: passing a NULL
+value for B<md>  to use the static array is not thread safe.
 B<evp_md> can be EVP_sha1(), EVP_ripemd160() etc.

More information about the openssl-commits mailing list