diff options
| author | Matt Caswell <matt@openssl.org> | 2024-09-16 13:00:32 +0200 |
|---|---|---|
| committer | Matt Caswell <matt@openssl.org> | 2024-09-17 17:25:44 +0200 |
| commit | a57c6f84920bff522bca5fede73f1a3f132d7cff (patch) | |
| tree | 166a5a0f41ec404228ee64ee0cb27cad0629db67 /doc | |
| parent | Build: Fix circular object deps with old GCC (diff) | |
| download | openssl-a57c6f84920bff522bca5fede73f1a3f132d7cff.tar.xz openssl-a57c6f84920bff522bca5fede73f1a3f132d7cff.zip | |
Don't restrict what EVP_PKEY_Q_keygen can be used for
The EVP_PKEY_Q_keygen function contains a list of algorithm type names
and fails if the requested name is not in the list. This prevents the use
of this function for externally supplied key type names.
We should just assume that any unrecognised key type name does not require
a parameter.
Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
(Merged from https://github.com/openssl/openssl/pull/25468)
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/man3/EVP_PKEY_keygen.pod | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/doc/man3/EVP_PKEY_keygen.pod b/doc/man3/EVP_PKEY_keygen.pod index 4331236186..dec9dd572f 100644 --- a/doc/man3/EVP_PKEY_keygen.pod +++ b/doc/man3/EVP_PKEY_keygen.pod @@ -101,7 +101,9 @@ a B<size_t> parameter must be given to specify the size of the RSA key. If I<type> is C<EC>, a string parameter must be given to specify the name of the EC curve. If I<type> is C<X25519>, C<X448>, C<ED25519>, C<ED448>, or C<SM2> -no further parameter is needed. +no further parameter is needed. Other key types may be possible if they are +supplied by the loaded providers. EVP_PKEY_Q_keygen() may be usable with such +key types as long as they do not require further parameters. =head1 RETURN VALUES |