Fix inconsistent doc of `CMS_verify` and `PKCS7_verify` etc. by DDvO · Pull Request #18915 · openssl/openssl

DDvO · 2022-07-30T19:27:42Z

Fix many inconsistencies in documentation of CMS_verify() and PKC7_verify()
Add some missing detail in related doc: CMS_add0_cert.pod, PKCS7_sign.pod, and PKCS7_sign_add_signer.pod
Add missing doc for PKCS7_add_certificate() and PKCS7_add_crl()
Change B<p to I< in CMS_verify(), PKC7_verify() , PKCS7_sign.pod, and PKCS7_sign_add_signer.pod
Minor related code cleanup in crypto/cms and crypto/pkcs7 and minor related cleanup in pkcs7.h.in

BTW, I wonder why the tremendous overlap between CMS and PKCS7 was introduced.
It should be clear that they are basically the same.
Major consolidation should be done here, as now requested in #18919.

openssl-machine · 2022-08-31T00:08:58Z

This PR is in a state where it requires action by @openssl/otc but the last update was 30 days ago

t8m · 2022-08-31T07:01:28Z

This cannot be merged to stable branches because code cleanups are not allowed there. The missingcrypto111.txt should not be touched. If you want the doc fixes on stable branches, please split the PR.

DDvO · 2022-08-31T08:00:07Z

So I will remove the changes to missingcrypto111.txt from this PR and move the code/header refactoring to a separate commit within this PR.
Likely I'll set up a PR that fixes the doc for 1.1.1 - there missingcrypto111.txt should be updated, right?
I'm not sure it's worth having a 3rd PR for fixing the doc in 3.0 - what do you think?

Also change B< to I< in {CMS,PKCS7}_verify.pod, PKCS7_sign{,_add_signer}.pod

…7,cms}/

DDvO · 2022-08-31T08:39:01Z

So I will remove the changes to missingcrypto111.txt from this PR and move the code/header refactoring to a separate commit within this PR.

Done, and rebased the PR.
So the only content change here that I just did is not to touch missingcrypto111.txt anymore.
And marked this PR to pertain to master only.

t8m · 2022-08-31T09:27:26Z

Likely I'll set up a PR that fixes the doc for 1.1.1 - there missingcrypto111.txt should be updated, right?
I'm not sure it's worth having a 3rd PR for fixing the doc in 3.0 - what do you think?

There is no missingcrypto*.txt in 1.1.1. However you can do just one PR for 3.0 and handle the inevitable conflict on the missing missingcrypto when cherry-picking it to 1.1.1. As that is a trivial conflict.

doc/man3/CMS_verify.pod

doc/man3/PKCS7_sign.pod

doc/man3/PKCS7_sign_add_signer.pod

doc/man3/PKCS7_verify.pod

include/openssl/pkcs7.h.in

…y() etc.

…o/{pkcs7,cms}/

t8m

@paulidale still OK?

openssl-machine · 2022-09-02T10:00:13Z

This pull request is ready to merge

DDvO · 2022-09-02T19:31:40Z

Merged to master - thanks @paulidale and @t8m

Also change B< to I< in {CMS,PKCS7}_verify.pod, PKCS7_sign{,_add_signer}.pod Reviewed-by: Tomas Mraz <[email protected]> Reviewed-by: Paul Dale <[email protected]> Reviewed-by: David von Oheimb <[email protected]> (Merged from #18915)

…7,cms}/ Reviewed-by: Tomas Mraz <[email protected]> Reviewed-by: Paul Dale <[email protected]> Reviewed-by: David von Oheimb <[email protected]> (Merged from #18915)

Also change B< to I< in {CMS,PKCS7}_verify.pod, PKCS7_sign{,_add_signer}.pod Reviewed-by: Tomas Mraz <[email protected]> Reviewed-by: Paul Dale <[email protected]> Reviewed-by: David von Oheimb <[email protected]> (Merged from openssl#18915)

…7,cms}/ Reviewed-by: Tomas Mraz <[email protected]> Reviewed-by: Paul Dale <[email protected]> Reviewed-by: David von Oheimb <[email protected]> (Merged from openssl#18915)

Also change B< to I< in {CMS,PKCS7}_verify.pod, PKCS7_sign{,_add_signer}.pod Reviewed-by: Tomas Mraz <[email protected]> Reviewed-by: Paul Dale <[email protected]> Reviewed-by: David von Oheimb <[email protected]> (Merged from openssl#18915)

…7,cms}/ Reviewed-by: Tomas Mraz <[email protected]> Reviewed-by: Paul Dale <[email protected]> Reviewed-by: David von Oheimb <[email protected]> (Merged from openssl#18915)

DDvO force-pushed the fix_inconsistent_doc_SMIME_CMS_PKCS_verify branch from b63720a to 844ff45 Compare July 31, 2022 05:01

DDvO mentioned this pull request Jul 31, 2022

PKCS#7 and CMS overlap heavily - deprecate (part of) PKCS7 #18919

Open

DDvO changed the title ~~Fix inconsistent doc of SMIME purposes and CMS_verify vs. PKCS7_verify~~ Fix inconsistent doc of CMS_verify and PKCS7_verify etc. Jul 31, 2022

DDvO removed the triaged: bug The issue/pr is/fixes a bug label Jul 31, 2022

paulidale approved these changes Aug 31, 2022

View reviewed changes

paulidale removed the approval: otc review pending label Aug 31, 2022

DDvO added 2 commits August 31, 2022 10:33

Fix many inconsistencies in doc of CMS_verify() and PKC7_verify() etc.

3812421

Also change B< to I< in {CMS,PKCS7}_verify.pod, PKCS7_sign{,_add_signer}.pod

PKCS7: add notes to pkcs7.h.in and minor code cleanup in crypto/{pkcs…

9e9bc39

…7,cms}/

DDvO force-pushed the fix_inconsistent_doc_SMIME_CMS_PKCS_verify branch from 844ff45 to 9e9bc39 Compare August 31, 2022 08:33

DDvO removed branch: 1.1.1 Applies to OpenSSL_1_1_1-stable branch (EOL) branch: 3.0 Applies to openssl-3.0 branch labels Aug 31, 2022

github-actions bot added the severity: fips change The pull request changes FIPS provider sources label Aug 31, 2022

t8m requested changes Aug 31, 2022

View reviewed changes

DDvO added 2 commits August 31, 2022 11:45

fixup! Fix many inconsistencies in doc of CMS_verify() and PKC7_verif…

eaa8fca

…y() etc.

fixup! PKCS7: add notes to pkcs7.h.in and minor code cleanup in crypt…

a688d81

…o/{pkcs7,cms}/

t8m approved these changes Aug 31, 2022

View reviewed changes

DDvO mentioned this pull request Sep 1, 2022

Fix inconsistent doc of CMS_verify and PKCS7_verify etc. - backporting #18915 #19108

Closed

paulidale approved these changes Sep 1, 2022

View reviewed changes

paulidale added approval: done This pull request has the required number of approvals and removed approval: review pending This pull request needs review by a committer labels Sep 1, 2022

openssl-machine added approval: ready to merge The 24 hour grace period has passed, ready to merge and removed approval: done This pull request has the required number of approvals labels Sep 2, 2022

DDvO closed this Sep 2, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fix inconsistent doc of `CMS_verify` and `PKCS7_verify` etc.#18915

Fix inconsistent doc of `CMS_verify` and `PKCS7_verify` etc.#18915
DDvO wants to merge 4 commits intoopenssl:masterfrom
siemens:fix_inconsistent_doc_SMIME_CMS_PKCS_verify

DDvO commented Jul 30, 2022 •

edited

Loading

Uh oh!

openssl-machine commented Aug 31, 2022

Uh oh!

t8m commented Aug 31, 2022

Uh oh!

DDvO commented Aug 31, 2022 •

edited

Loading

Uh oh!

DDvO commented Aug 31, 2022 •

edited

Loading

Uh oh!

t8m commented Aug 31, 2022

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

t8m left a comment

Uh oh!

openssl-machine commented Sep 2, 2022

Uh oh!

DDvO commented Sep 2, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Uh oh!

Conversation

DDvO commented Jul 30, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

openssl-machine commented Aug 31, 2022

Uh oh!

t8m commented Aug 31, 2022

Uh oh!

DDvO commented Aug 31, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

DDvO commented Aug 31, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

t8m commented Aug 31, 2022

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

t8m left a comment

Choose a reason for hiding this comment

Uh oh!

openssl-machine commented Sep 2, 2022

Uh oh!

DDvO commented Sep 2, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

DDvO commented Jul 30, 2022 •

edited

Loading

DDvO commented Aug 31, 2022 •

edited

Loading

DDvO commented Aug 31, 2022 •

edited

Loading