From: Sergey G. Brester <github@sebres.de>
Date: Wed, 27 Aug 2025 22:26:11 +0000 (+0200)
Subject: openssl-enc.pod.in: We actually use PKCS#7 padding
X-Git-Tag: openssl-3.4.3~44
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=eff83a7270099ad989f89b242389a8dd1ca01d06;p=thirdparty%2Fopenssl.git

openssl-enc.pod.in: We actually use PKCS#7 padding

PKCS#5 padding is a subset for 8-bytes block ciphers only.

CLA: trivial

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28359)

(cherry picked from commit 4e0c2d02a9a415823babf74106985352e7bbcdae)
---

diff --git a/doc/man1/openssl-enc.pod.in b/doc/man1/openssl-enc.pod.in
index ae6942d1c09..17d7421226b 100644
--- a/doc/man1/openssl-enc.pod.in
+++ b/doc/man1/openssl-enc.pod.in
@@ -265,7 +265,7 @@ Some of the ciphers do not have large keys and others have security
 implications if not used correctly. A beginner is advised to just use
 a strong block cipher, such as AES, in CBC mode.
 
-All the block ciphers normally use PKCS#5 padding, also known as standard
+All the block ciphers normally use PKCS#7 padding, also known as standard
 block padding. This allows a rudimentary integrity or password check to
 be performed. However, since the chance of random data passing the test
 is better than 1 in 256 it isn't a very good test.