From: Michael Baentsch <57787676+baentsch@users.noreply.github.com> Date: Tue, 29 Oct 2024 08:42:40 +0000 (+0100) Subject: Document extensibility of -groups parameter via providers X-Git-Tag: openssl-3.5.0-alpha1~942 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=b9881e8eb1962607a3a920347c4cad6e2566727c;p=thirdparty%2Fopenssl.git Document extensibility of -groups parameter via providers Also add brainpool curves Reviewed-by: Dmitry Belyavskiy Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/25821) --- diff --git a/doc/man3/SSL_CONF_cmd.pod b/doc/man3/SSL_CONF_cmd.pod index e4beed72854..32d10c3a5b3 100644 --- a/doc/man3/SSL_CONF_cmd.pod +++ b/doc/man3/SSL_CONF_cmd.pod @@ -125,8 +125,8 @@ B, B or B. Note: algorithm and hash names are case sensitive. B is one of the signature schemes defined in TLSv1.3, specified using the IETF name, e.g., B, B, or B. Additional providers may make available -further algorithms via the TLS_SIGALG capability. -See L. +further algorithms via the TLS-SIGALG capability. +See L. If this option is not set then all signature algorithms supported by all activated providers are permissible. @@ -161,9 +161,12 @@ where applicable (e.g. B, B) or an OpenSSL OID name (e.g. B). Group names are case sensitive. The list should be in order of preference with the most preferred group first. -Currently supported groups for B are B, B, B, -B, B, B, B, B, B, -B. +Groups for B in the default provider are B, B, +B, B, B, B, B, B, +B, B, B, +B and B. +Additional providers may make available further algorithms via the +TLS-GROUP capability. See L. =item B<-curves> I