Document that DH and DHX key types cannot be used together in KEX

author Tomas Mraz <tomas@openssl.org>

Tue, 9 Jul 2024 07:17:05 +0000 (09:17 +0200)

committer Tomas Mraz <tomas@openssl.org>

Wed, 17 Jul 2024 14:39:29 +0000 (16:39 +0200)
author Tomas Mraz <tomas@openssl.org>
Tue, 9 Jul 2024 07:17:05 +0000 (09:17 +0200)
committer Tomas Mraz <tomas@openssl.org>
Wed, 17 Jul 2024 14:39:29 +0000 (16:39 +0200)
diff --git a/doc/man7/EVP_KEYEXCH-DH.pod b/doc/man7/EVP_KEYEXCH-DH.pod

index a6927afefb24e95ab20586b8ebee6f9bcd696493..04ac08bce29520a811eb9c5aa090834c87221e3e 100644 (file)
--- a/doc/man7/EVP_KEYEXCH-DH.pod
+++ b/doc/man7/EVP_KEYEXCH-DH.pod
@@ -7,9 +7,14 @@ EVP_KEYEXCH-DH
  
  =head1 DESCRIPTION
  
-Key exchange support for the B<DH> key type.
+Key exchange support for the B<DH> and B<DHX> key types.
  
-=head2 DH key exchange parameters
+Please note that although both key types support the same key exchange
+operations, they cannot be used together in a single key exchange. It
+is not possible to use a private key of the B<DH> type in key exchange
+with the public key of B<DHX> type and vice versa.
+
+=head2 DH and DHX key exchange parameters
  
  =over 4
author	Tomas Mraz <tomas@openssl.org>
	Tue, 9 Jul 2024 07:17:05 +0000 (09:17 +0200)
committer	Tomas Mraz <tomas@openssl.org>
	Wed, 17 Jul 2024 14:39:29 +0000 (16:39 +0200)