diff options
author | Matt Caswell <matt@openssl.org> | 2019-03-07 14:02:56 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2019-03-19 11:42:03 +0000 |
commit | 1913df42336ab90e2f6d6c21de186f64c409e8e5 (patch) | |
tree | 2bb253d17c444c27d863794eef61f24c113f6af8 /doc | |
parent | a7e1cb8cbbefda0f31489566ad08055239ee216e (diff) |
Update pkeyutl documentation about the digest option
DSA can accept other digests other than SHA1. EC ignores the digest option
altogether.
Fixes #8425
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/8432)
(cherry picked from commit 6a6d9ecd1dff669c162e8ab940dac5db2e82679d)
Diffstat (limited to 'doc')
-rw-r--r-- | doc/man1/pkeyutl.pod | 11 |
1 files changed, 5 insertions, 6 deletions
diff --git a/doc/man1/pkeyutl.pod b/doc/man1/pkeyutl.pod index 664dbef359..64d7912abc 100644 --- a/doc/man1/pkeyutl.pod +++ b/doc/man1/pkeyutl.pod @@ -272,20 +272,19 @@ value less than the minimum restriction. =head1 DSA ALGORITHM The DSA algorithm supports signing and verification operations only. Currently -there are no additional options other than B<digest>. Only the SHA1 -digest can be used and this digest is assumed by default. +there are no additional B<-pkeyopt> options other than B<digest>. The SHA1 +digest is assumed by default. =head1 DH ALGORITHM The DH algorithm only supports the derivation operation and no additional -options. +B<-pkeyopt> options. =head1 EC ALGORITHM The EC algorithm supports sign, verify and derive operations. The sign and -verify operations use ECDSA and derive uses ECDH. Currently there are no -additional options other than B<digest>. Only the SHA1 digest can be used and -this digest is assumed by default. +verify operations use ECDSA and derive uses ECDH. SHA1 is assumed by default for +the B<-pkeyopt> B<digest> option. =head1 X25519 and X448 ALGORITHMS |