diff options
author | Neil Horman <nhorman@openssl.org> | 2024-03-19 04:52:57 -0400 |
---|---|---|
committer | Tomas Mraz <tomas@openssl.org> | 2024-04-09 20:41:15 +0200 |
commit | 4feb4a2b2cb7c45c0392e03453a658f29bd70bd2 (patch) | |
tree | 96838a48264fb2cf96f571c8ddb7c542894efa2b /doc | |
parent | d6a8adeccdb8188517c5a84d35b79ef826176472 (diff) |
Add docs noting requirements for SM2 signing
Reviewed-by: Paul Yang <kaishen.yy@antfin.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23887)
Diffstat (limited to 'doc')
-rw-r--r-- | doc/man7/EVP_PKEY-SM2.pod | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/doc/man7/EVP_PKEY-SM2.pod b/doc/man7/EVP_PKEY-SM2.pod index 8bdc506cec..b073dc8b05 100644 --- a/doc/man7/EVP_PKEY-SM2.pod +++ b/doc/man7/EVP_PKEY-SM2.pod @@ -38,6 +38,9 @@ Getter that returns the default digest name. B<SM2> signatures can be generated by using the 'DigestSign' series of APIs, for instance, EVP_DigestSignInit(), EVP_DigestSignUpdate() and EVP_DigestSignFinal(). Ditto for the verification process by calling the 'DigestVerify' series of APIs. +Note that the SM2 algorithm requires the presence of the public key for signatures, +as such the B<OSSL_PKEY_PARAM_PUB_KEY> option must be set on any key used in signature +generation. Before computing an B<SM2> signature, an B<EVP_PKEY_CTX> needs to be created, and an B<SM2> ID must be set for it, like this: |