diff options
| author | Pauli <paul.dale@oracle.com> | 2020-01-14 12:11:50 +1000 |
|---|---|---|
| committer | Pauli <paul.dale@oracle.com> | 2020-01-29 19:49:23 +1000 |
| commit | dbde4726889a19af0a718fe9c5542f39c81acbd3 (patch) | |
| tree | 371afa179289e0ba48e5a5c99520b139fd0f325f /doc | |
| parent | fd4d283e7527cb711a4ff42d5ddcbc40828077f5 (diff) | |
Deprecate the low level HMAC functions
Use of the low level HMAC functions has been informally discouraged for a
long time. We now formally deprecate them.
Applications should instead use EVP_MAC_CTX_new(3), EVP_MAC_CTX_free(3),
EVP_MAC_init(3), EVP_MAC_update(3) and EVP_MAC_final(3).
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/10836)
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/man3/HMAC.pod | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/doc/man3/HMAC.pod b/doc/man3/HMAC.pod index 8b2e077bd6..54db3ad66d 100644 --- a/doc/man3/HMAC.pod +++ b/doc/man3/HMAC.pod @@ -20,6 +20,10 @@ HMAC_size #include <openssl/hmac.h> +Deprecated since OpenSSL 3.0, can be hidden entirely by defining +B<OPENSSL_API_COMPAT> with a suitable version value, see +L<openssl_user_macros(7)>: + unsigned char *HMAC(const EVP_MD *evp_md, const void *key, int key_len, const unsigned char *d, int n, unsigned char *md, unsigned int *md_len); @@ -49,6 +53,10 @@ L<openssl_user_macros(7)>: =head1 DESCRIPTION +All of the functions described on this page are deprecated. Applications should +instead use L<EVP_MAC_CTX_new(3)>, L<EVP_MAC_CTX_free(3)>, L<EVP_MAC_init(3)>, +L<EVP_MAC_update(3)> and L<EVP_MAC_final(3)>. + HMAC is a MAC (message authentication code), i.e. a keyed hash function used for message authentication, which is based on a hash function. @@ -138,6 +146,8 @@ L<SHA1(3)>, L<evp(7)> =head1 HISTORY +All of these functions were deprecated in OpenSSL 3.0. + HMAC_CTX_init() was replaced with HMAC_CTX_reset() in OpenSSL 1.1.0. HMAC_CTX_cleanup() existed in OpenSSL before version 1.1.0. |