diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2017-01-16 16:52:52 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2017-01-18 15:04:49 +0000 |
commit | 79ebfc46817bc5da1082bcdc5bd50905c83fa712 (patch) | |
tree | 036babddbe82995d4f6c2b901a3a97bf7b91ae49 /doc | |
parent | 31a51151fc163a7f5f4d07dff9478be50e4b5707 (diff) | |
download | openssl-79ebfc46817bc5da1082bcdc5bd50905c83fa712.tar.gz |
Add support for -1, -2 salt lengths for PSS only keys.
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2236)
Diffstat (limited to 'doc')
-rw-r--r-- | doc/man3/EVP_PKEY_CTX_set_rsa_pss_keygen_md.pod | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/doc/man3/EVP_PKEY_CTX_set_rsa_pss_keygen_md.pod b/doc/man3/EVP_PKEY_CTX_set_rsa_pss_keygen_md.pod index eb7dfd8a7b..853d4b8d36 100644 --- a/doc/man3/EVP_PKEY_CTX_set_rsa_pss_keygen_md.pod +++ b/doc/man3/EVP_PKEY_CTX_set_rsa_pss_keygen_md.pod @@ -42,9 +42,10 @@ returned if an attempt is made to set the padding mode to anything other than B<PSS>. It is otherwise similar to the B<RSA> version. The EVP_PKEY_CTX_set_rsa_pss_saltlen() macro is used to set the salt length. -If the key has usage restrictionsthen an error is returned if an attempt is +If the key has usage restrictions then an error is returned if an attempt is made to set the salt length below the minimum value. It is otherwise similar -to the B<RSA> operation except special negative values are not supported. +to the B<RSA> operation except detection of the salt length (using -2) is +not supported for verification if the key has usage restrictions. The EVP_PKEY_CTX_set_signature_md() and EVP_PKEY_CTX_set_rsa_mgf1_md() macros are used to set the digest and MGF1 algorithms respectively. If the key has |