diff options
author | Shane Lontis <shane.lontis@oracle.com> | 2020-03-15 21:34:29 +1000 |
---|---|---|
committer | Shane Lontis <shane.lontis@oracle.com> | 2020-03-15 21:34:29 +1000 |
commit | edd3b7a309f8767fc7d8a5c4f7d350b53e144c1b (patch) | |
tree | eb01f9f5db30db92f64ab26731712eb7e64caf54 /doc/man7 | |
parent | 2decdad31d36fdd36e1de3608a8a7a55a873e1f8 (diff) |
Add ECDSA to providers
Added ECDSA support for OSSL_SIGNATURE_PARAM_ALGORITHM_ID
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/10968)
Diffstat (limited to 'doc/man7')
-rw-r--r-- | doc/man7/provider-signature.pod | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/doc/man7/provider-signature.pod b/doc/man7/provider-signature.pod index 771c55f6f5..edd4013fa6 100644 --- a/doc/man7/provider-signature.pod +++ b/doc/man7/provider-signature.pod @@ -332,6 +332,23 @@ Gets or sets the output size of the digest algorithm used for the input to the signature functions. The length of the "digest-size" parameter should not exceed that of a B<size_t>. += item "algorithm-id" (B<OSSL_SIGNATURE_PARAM_ALGORITHM_ID>) <octet string> + +Gets the DER encoded AlgorithmIdentifier that corresponds to the combination of +signature algorithm and digest algorithm for the signature operation. + +=item "kat" (B<OSSL_SIGNATURE_PARAM_KAT>) <unsigned integer> + +Sets a flag to modify the sign operation to return an error if the initial +calculated signature is invalid. +In the normal mode of operation - new random values are chosen until the +signature operation succeeds. +By default it retries until a signature is calculated. +Setting the value to 0 causes the sign operation to retry, +otherwise the sign operation is only tried once and returns whether or not it +was successful. +Known answer tests can be performed if the random generator is overriden to +supply known values that either pass or fail. =back |