doc: document that the FIPS provider doesn't support deterministic ECDSA sigs

author Pauli <ppzgs1@gmail.com>

Mon, 24 Feb 2025 04:20:34 +0000 (15:20 +1100)

committer Tomas Mraz <tomas@openssl.org>

Tue, 25 Feb 2025 09:42:08 +0000 (10:42 +0100)
author Pauli <ppzgs1@gmail.com>
Mon, 24 Feb 2025 04:20:34 +0000 (15:20 +1100)
committer Tomas Mraz <tomas@openssl.org>
Tue, 25 Feb 2025 09:42:08 +0000 (10:42 +0100)
diff --git a/doc/man7/provider-signature.pod b/doc/man7/provider-signature.pod

index b26b8b6a5b4cf6d8fa5889053208117d9f11dacd..b5b8f54ab8637dc393be956a091495e1c5e21cd1 100644 (file)
--- a/doc/man7/provider-signature.pod
+++ b/doc/man7/provider-signature.pod
@@ -375,6 +375,8 @@ Section 4 "Security Considerations".  The default value for
  nonce B<k> as defined in FIPS 186-4 Section 6.3 "Secret Number
  Generation".
  
+The FIPS provider does not support deterministic digital signature generation.
+
  =item "kat" (B<OSSL_SIGNATURE_PARAM_KAT>) <unsigned integer>
  
  Sets a flag to modify the sign operation to return an error if the initial
author	Pauli <ppzgs1@gmail.com>
	Mon, 24 Feb 2025 04:20:34 +0000 (15:20 +1100)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 25 Feb 2025 09:42:08 +0000 (10:42 +0100)