From: Stefan Berger Date: Sun, 8 Mar 2026 23:07:16 +0000 (-0500) Subject: man: Mention Ed448 for CMS with signed attributes is not supported X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=5041f15320e76de26e5524dcaaba94b1780c99a8;p=thirdparty%2Fopenssl.git man: Mention Ed448 for CMS with signed attributes is not supported Mention that Ed448 keys cannot currently be used for CMS with signed attributes since RFC 8419 requires id-shake256-len be used, which is not currently supported by OpenSSL. Resolves: 30291 Signed-off-by: Stefan Berger Reviewed-by: Tomas Mraz Reviewed-by: Paul Dale Reviewed-by: Neil Horman MergeDate: Tue Mar 17 16:20:20 2026 (Merged from https://github.com/openssl/openssl/pull/30312) --- diff --git a/doc/man3/CMS_add1_signer.pod b/doc/man3/CMS_add1_signer.pod index c7618f6f329..58b8bcc51d7 100644 --- a/doc/man3/CMS_add1_signer.pod +++ b/doc/man3/CMS_add1_signer.pod @@ -87,6 +87,10 @@ scheme will be used. This is the case for EdDSA (RFC 8419). For SLH-DSA (RFC 981 and ML-DSA (RFC 9882), the scheme-suggested hash will only be used if B is NULL. +Signing with Ed448 is currently not supported for the case of signed-data +with signedAttributes due to missing support for id-shake256-len (RFC 8419; +sec 3.1). + CMS_add1_signer() returns an internal pointer to the CMS_SignerInfo structure just added, this can be used to set additional attributes before it is finalized.