mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-04-18 20:40:45 +08:00
Code Issues Packages Projects Releases Wiki Activity

doc: document that the FIPS provider doesn't support deterministic ECDSA sigs

Browse Source 
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/26880)

(cherry picked from commit 53c54b13acdf0f0725fdd0b0eace82a723cc3647)
This commit is contained in:
Pauli 2025-02-24 15:20:34 +11:00 committed by Tomas Mraz
parent 5bfbfd81e6
commit 5264f24a5e
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
doc/man7/provider-signature.pod
View File

@ -375,6 +375,8 @@ Section 4 "Security Considerations". The default value for
nonce B<k> as defined in FIPS 186-4 Section 6.3 "Secret Number
Generation".
The FIPS provider does not support deterministic digital signature generation.
=item "kat" (B<OSSL_SIGNATURE_PARAM_KAT>) <unsigned integer>
Sets a flag to modify the sign operation to return an error if the initial