doc: document that the FIPS provider doesn't support deterministic ECDSA sigs

author Pauli <ppzgs1@gmail.com>

Mon, 24 Feb 2025 04:20:34 +0000 (15:20 +1100)

committer Tomas Mraz <tomas@openssl.org>

Tue, 25 Feb 2025 09:42:01 +0000 (10:42 +0100)
author Pauli <ppzgs1@gmail.com>
Mon, 24 Feb 2025 04:20:34 +0000 (15:20 +1100)
committer Tomas Mraz <tomas@openssl.org>
Tue, 25 Feb 2025 09:42:01 +0000 (10:42 +0100)
diff --git a/doc/man7/provider-signature.pod b/doc/man7/provider-signature.pod

index ce6efa2cc2dd90f14d2212fb75fff13aadf35c84..904b15815bb53c651dbbfcee10486604d58391ee 100644 (file)
--- a/doc/man7/provider-signature.pod
+++ b/doc/man7/provider-signature.pod
@@ -485,6 +485,8 @@ Section 4 "Security Considerations".  The default value for
  nonce B<k> as defined in FIPS 186-4 Section 6.3 "Secret Number
  Generation".
  
+The FIPS provider does not support deterministic digital signature generation.
+
  =item "kat" (B<OSSL_SIGNATURE_PARAM_KAT>) <unsigned integer>
  
  Sets a flag to modify the sign operation to return an error if the initial
author	Pauli <ppzgs1@gmail.com>
	Mon, 24 Feb 2025 04:20:34 +0000 (15:20 +1100)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 25 Feb 2025 09:42:01 +0000 (10:42 +0100)