aboutsummaryrefslogtreecommitdiff
path: root/secure/lib/libcrypto/man/man7/OSSL_PROVIDER-base.7
diff options
context:
space:
mode:
Diffstat (limited to 'secure/lib/libcrypto/man/man7/OSSL_PROVIDER-base.7')
-rw-r--r--secure/lib/libcrypto/man/man7/OSSL_PROVIDER-base.7306
1 files changed, 181 insertions, 125 deletions
diff --git a/secure/lib/libcrypto/man/man7/OSSL_PROVIDER-base.7 b/secure/lib/libcrypto/man/man7/OSSL_PROVIDER-base.7
index 6127b4d31f6c..c57b88535278 100644
--- a/secure/lib/libcrypto/man/man7/OSSL_PROVIDER-base.7
+++ b/secure/lib/libcrypto/man/man7/OSSL_PROVIDER-base.7
@@ -1,4 +1,5 @@
-.\" Automatically generated by Pod::Man 4.14 (Pod::Simple 3.42)
+.\" -*- mode: troff; coding: utf-8 -*-
+.\" Automatically generated by Pod::Man 5.0102 (Pod::Simple 3.45)
.\"
.\" Standard preamble:
.\" ========================================================================
@@ -15,29 +16,12 @@
.ft R
.fi
..
-.\" Set up some character translations and predefined strings. \*(-- will
-.\" give an unbreakable dash, \*(PI will give pi, \*(L" will give a left
-.\" double quote, and \*(R" will give a right double quote. \*(C+ will
-.\" give a nicer C++. Capital omega is used to do unbreakable dashes and
-.\" therefore won't be available. \*(C` and \*(C' expand to `' in nroff,
-.\" nothing in troff, for use with C<>.
-.tr \(*W-
-.ds C+ C\v'-.1v'\h'-1p'\s-2+\h'-1p'+\s0\v'.1v'\h'-1p'
+.\" \*(C` and \*(C' are quotes in nroff, nothing in troff, for use with C<>.
.ie n \{\
-. ds -- \(*W-
-. ds PI pi
-. if (\n(.H=4u)&(1m=24u) .ds -- \(*W\h'-12u'\(*W\h'-12u'-\" diablo 10 pitch
-. if (\n(.H=4u)&(1m=20u) .ds -- \(*W\h'-12u'\(*W\h'-8u'-\" diablo 12 pitch
-. ds L" ""
-. ds R" ""
. ds C` ""
. ds C' ""
'br\}
.el\{\
-. ds -- \|\(em\|
-. ds PI \(*p
-. ds L" ``
-. ds R" ''
. ds C`
. ds C'
'br\}
@@ -68,156 +52,228 @@
. \}
.\}
.rr rF
-.\" Fear. Run. Save yourself. No user-serviceable parts.
-. \" fudge factors for nroff and troff
-.if n \{\
-. ds #H 0
-. ds #V .8m
-. ds #F .3m
-. ds #[ \f1
-. ds #] \fP
-.\}
-.if t \{\
-. ds #H ((1u-(\\\\n(.fu%2u))*.13m)
-. ds #V .6m
-. ds #F 0
-. ds #[ \&
-. ds #] \&
-.\}
-. \" simple accents for nroff and troff
-.if n \{\
-. ds ' \&
-. ds ` \&
-. ds ^ \&
-. ds , \&
-. ds ~ ~
-. ds /
-.\}
-.if t \{\
-. ds ' \\k:\h'-(\\n(.wu*8/10-\*(#H)'\'\h"|\\n:u"
-. ds ` \\k:\h'-(\\n(.wu*8/10-\*(#H)'\`\h'|\\n:u'
-. ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'^\h'|\\n:u'
-. ds , \\k:\h'-(\\n(.wu*8/10)',\h'|\\n:u'
-. ds ~ \\k:\h'-(\\n(.wu-\*(#H-.1m)'~\h'|\\n:u'
-. ds / \\k:\h'-(\\n(.wu*8/10-\*(#H)'\z\(sl\h'|\\n:u'
-.\}
-. \" troff and (daisy-wheel) nroff accents
-.ds : \\k:\h'-(\\n(.wu*8/10-\*(#H+.1m+\*(#F)'\v'-\*(#V'\z.\h'.2m+\*(#F'.\h'|\\n:u'\v'\*(#V'
-.ds 8 \h'\*(#H'\(*b\h'-\*(#H'
-.ds o \\k:\h'-(\\n(.wu+\w'\(de'u-\*(#H)/2u'\v'-.3n'\*(#[\z\(de\v'.3n'\h'|\\n:u'\*(#]
-.ds d- \h'\*(#H'\(pd\h'-\w'~'u'\v'-.25m'\f2\(hy\fP\v'.25m'\h'-\*(#H'
-.ds D- D\\k:\h'-\w'D'u'\v'-.11m'\z\(hy\v'.11m'\h'|\\n:u'
-.ds th \*(#[\v'.3m'\s+1I\s-1\v'-.3m'\h'-(\w'I'u*2/3)'\s-1o\s+1\*(#]
-.ds Th \*(#[\s+2I\s-2\h'-\w'I'u*3/5'\v'-.3m'o\v'.3m'\*(#]
-.ds ae a\h'-(\w'a'u*4/10)'e
-.ds Ae A\h'-(\w'A'u*4/10)'E
-. \" corrections for vroff
-.if v .ds ~ \\k:\h'-(\\n(.wu*9/10-\*(#H)'\s-2\u~\d\s+2\h'|\\n:u'
-.if v .ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'\v'-.4m'^\v'.4m'\h'|\\n:u'
-. \" for low resolution devices (crt and lpr)
-.if \n(.H>23 .if \n(.V>19 \
-\{\
-. ds : e
-. ds 8 ss
-. ds o a
-. ds d- d\h'-1'\(ga
-. ds D- D\h'-1'\(hy
-. ds th \o'bp'
-. ds Th \o'LP'
-. ds ae ae
-. ds Ae AE
-.\}
-.rm #[ #] #H #V #F C
.\" ========================================================================
.\"
.IX Title "OSSL_PROVIDER-BASE 7ossl"
-.TH OSSL_PROVIDER-BASE 7ossl "2023-09-19" "3.0.11" "OpenSSL"
+.TH OSSL_PROVIDER-BASE 7ossl 2025-07-01 3.5.1 OpenSSL
.\" For nroff, turn off justification. Always turn off hyphenation; it makes
.\" way too many mistakes in technical documents.
.if n .ad l
.nh
-.SH "NAME"
+.SH NAME
OSSL_PROVIDER\-base \- OpenSSL base provider
-.SH "DESCRIPTION"
+.SH DESCRIPTION
.IX Header "DESCRIPTION"
The OpenSSL base provider supplies the encoding for OpenSSL's
asymmetric cryptography.
-.SS "Properties"
+.SS Properties
.IX Subsection "Properties"
The implementations in this provider specifically have this property
defined:
-.ie n .IP """provider=base""" 4
-.el .IP "``provider=base''" 4
-.IX Item "provider=base"
+.IP """provider=base""" 4
+.IX Item """provider=base"""
.PP
It may be used in a property query string with fetching functions.
.PP
It isn't mandatory to query for this property, except to make sure to get
implementations of this provider and none other.
-.ie n .IP """type=parameters""" 4
-.el .IP "``type=parameters''" 4
-.IX Item "type=parameters"
+.IP """type=parameters""" 4
+.IX Item """type=parameters"""
.PD 0
-.ie n .IP """type=private""" 4
-.el .IP "``type=private''" 4
-.IX Item "type=private"
-.ie n .IP """type=public""" 4
-.el .IP "``type=public''" 4
-.IX Item "type=public"
+.IP """type=private""" 4
+.IX Item """type=private"""
+.IP """type=public""" 4
+.IX Item """type=public"""
.PD
.PP
These may be used in a property query string with fetching functions to select
which data are to be encoded. Either the private key material, the public
key material or the domain parameters can be selected.
-.ie n .IP """format=der""" 4
-.el .IP "``format=der''" 4
-.IX Item "format=der"
+.IP """format=der""" 4
+.IX Item """format=der"""
.PD 0
-.ie n .IP """format=pem""" 4
-.el .IP "``format=pem''" 4
-.IX Item "format=pem"
-.ie n .IP """format=text""" 4
-.el .IP "``format=text''" 4
-.IX Item "format=text"
+.IP """format=pem""" 4
+.IX Item """format=pem"""
+.IP """format=text""" 4
+.IX Item """format=text"""
.PD
.PP
These may be used in a property query string with fetching functions to select
-the encoding output format. Either the \s-1DER, PEM\s0 and plaintext are
+the encoding output format. Either the DER, PEM and plaintext are
currently permitted.
.SH "OPERATIONS AND ALGORITHMS"
.IX Header "OPERATIONS AND ALGORITHMS"
The OpenSSL base provider supports these operations and algorithms:
+.SS "Random Number Generation"
+.IX Subsection "Random Number Generation"
+.IP "SEED-SRC, see \fBEVP_RAND\-SEED\-SRC\fR\|(7)" 4
+.IX Item "SEED-SRC, see EVP_RAND-SEED-SRC"
+.PD 0
+.IP "JITTER, see \fBEVP_RAND\-JITTER\fR\|(7)" 4
+.IX Item "JITTER, see EVP_RAND-JITTER"
+.PD
+.PP
+In addition to this provider, the "SEED-SRC" and "JITTER" algorithms
+are also available in the default provider.
.SS "Asymmetric Key Encoder"
.IX Subsection "Asymmetric Key Encoder"
-In addition to \*(L"provider=base\*(R", some of these encoders define the
-property \*(L"fips=yes\*(R", to allow them to be used together with the \s-1FIPS\s0
-provider.
-.IP "\s-1RSA,\s0 see \s-1\fBOSSL_ENCODER\-RSA\s0\fR\|(7)" 4
-.IX Item "RSA, see OSSL_ENCODER-RSA"
+.IP RSA 4
+.IX Item "RSA"
.PD 0
-.IP "\s-1DH,\s0 see \s-1\fBOSSL_ENCODER\-DH\s0\fR\|(7)" 4
-.IX Item "DH, see OSSL_ENCODER-DH"
-.IP "\s-1DSA,\s0 see \s-1\fBOSSL_ENCODER\-DSA\s0\fR\|(7)" 4
-.IX Item "DSA, see OSSL_ENCODER-DSA"
-.IP "\s-1EC,\s0 see \s-1\fBOSSL_ENCODER\-EC\s0\fR\|(7)" 4
-.IX Item "EC, see OSSL_ENCODER-EC"
-.IP "X25519, see \s-1\fBOSSL_ENCODER\-X25519\s0\fR\|(7)" 4
-.IX Item "X25519, see OSSL_ENCODER-X25519"
-.IP "X448, see \s-1\fBOSSL_ENCODER\-X448\s0\fR\|(7)" 4
-.IX Item "X448, see OSSL_ENCODER-X448"
+.IP RSA-PSS 4
+.IX Item "RSA-PSS"
+.IP DH 4
+.IX Item "DH"
+.IP DHX 4
+.IX Item "DHX"
+.IP DSA 4
+.IX Item "DSA"
+.IP EC 4
+.IX Item "EC"
+.IP ED25519 4
+.IX Item "ED25519"
+.IP ED448 4
+.IX Item "ED448"
+.IP X25519 4
+.IX Item "X25519"
+.IP X448 4
+.IX Item "X448"
+.IP SM2 4
+.IX Item "SM2"
+.IP ML\-DSA\-44 4
+.IX Item "ML-DSA-44"
+.IP ML\-DSA\-65 4
+.IX Item "ML-DSA-65"
+.IP ML\-DSA\-87 4
+.IX Item "ML-DSA-87"
+.IP ML\-KEM\-512 4
+.IX Item "ML-KEM-512"
+.IP ML\-KEM\-768 4
+.IX Item "ML-KEM-768"
+.IP ML\-KEM\-1024 4
+.IX Item "ML-KEM-1024"
+.IP SLH\-DSA\-SHA2\-128s 4
+.IX Item "SLH-DSA-SHA2-128s"
+.IP SLH\-DSA\-SHA2\-128f 4
+.IX Item "SLH-DSA-SHA2-128f"
+.IP SLH\-DSA\-SHA2\-192s 4
+.IX Item "SLH-DSA-SHA2-192s"
+.IP SLH\-DSA\-SHA2\-192f 4
+.IX Item "SLH-DSA-SHA2-192f"
+.IP SLH\-DSA\-SHA2\-256s 4
+.IX Item "SLH-DSA-SHA2-256s"
+.IP SLH\-DSA\-SHA2\-256f 4
+.IX Item "SLH-DSA-SHA2-256f"
+.IP SLH\-DSA\-SHAKE\-128s 4
+.IX Item "SLH-DSA-SHAKE-128s"
+.IP SLH\-DSA\-SHAKE\-128f 4
+.IX Item "SLH-DSA-SHAKE-128f"
+.IP SLH\-DSA\-SHAKE\-192s 4
+.IX Item "SLH-DSA-SHAKE-192s"
+.IP SLH\-DSA\-SHAKE\-192f 4
+.IX Item "SLH-DSA-SHAKE-192f"
+.IP SLH\-DSA\-SHAKE\-256s 4
+.IX Item "SLH-DSA-SHAKE-256s"
+.IP SLH\-DSA\-SHAKE\-256f 4
+.IX Item "SLH-DSA-SHAKE-256f"
.PD
+.PP
+In addition to this provider, all of these encoding algorithms are also
+available in the default provider. Some of these algorithms may be used in
+combination with the FIPS provider.
+.SS "Asymmetric Key Decoder"
+.IX Subsection "Asymmetric Key Decoder"
+.IP RSA 4
+.IX Item "RSA"
+.PD 0
+.IP RSA-PSS 4
+.IX Item "RSA-PSS"
+.IP DH 4
+.IX Item "DH"
+.IP DHX 4
+.IX Item "DHX"
+.IP DSA 4
+.IX Item "DSA"
+.IP EC 4
+.IX Item "EC"
+.IP ED25519 4
+.IX Item "ED25519"
+.IP ED448 4
+.IX Item "ED448"
+.IP X25519 4
+.IX Item "X25519"
+.IP X448 4
+.IX Item "X448"
+.IP SM2 4
+.IX Item "SM2"
+.IP DER 4
+.IX Item "DER"
+.IP ML\-DSA\-44 4
+.IX Item "ML-DSA-44"
+.IP ML\-DSA\-65 4
+.IX Item "ML-DSA-65"
+.IP ML\-DSA\-87 4
+.IX Item "ML-DSA-87"
+.IP ML\-KEM\-512 4
+.IX Item "ML-KEM-512"
+.IP ML\-KEM\-768 4
+.IX Item "ML-KEM-768"
+.IP ML\-KEM\-1024 4
+.IX Item "ML-KEM-1024"
+.IP SLH\-DSA\-SHA2\-128s 4
+.IX Item "SLH-DSA-SHA2-128s"
+.IP SLH\-DSA\-SHA2\-128f 4
+.IX Item "SLH-DSA-SHA2-128f"
+.IP SLH\-DSA\-SHA2\-192s 4
+.IX Item "SLH-DSA-SHA2-192s"
+.IP SLH\-DSA\-SHA2\-192f 4
+.IX Item "SLH-DSA-SHA2-192f"
+.IP SLH\-DSA\-SHA2\-256s 4
+.IX Item "SLH-DSA-SHA2-256s"
+.IP SLH\-DSA\-SHA2\-256f 4
+.IX Item "SLH-DSA-SHA2-256f"
+.IP SLH\-DSA\-SHAKE\-128s 4
+.IX Item "SLH-DSA-SHAKE-128s"
+.IP SLH\-DSA\-SHAKE\-128f 4
+.IX Item "SLH-DSA-SHAKE-128f"
+.IP SLH\-DSA\-SHAKE\-192s 4
+.IX Item "SLH-DSA-SHAKE-192s"
+.IP SLH\-DSA\-SHAKE\-192f 4
+.IX Item "SLH-DSA-SHAKE-192f"
+.IP SLH\-DSA\-SHAKE\-256s 4
+.IX Item "SLH-DSA-SHAKE-256s"
+.IP SLH\-DSA\-SHAKE\-256f 4
+.IX Item "SLH-DSA-SHAKE-256f"
+.PD
+.PP
+In addition to this provider, all of these decoding algorithms are also
+available in the default provider. Some of these algorithms may be used in
+combination with the FIPS provider.
+.SS Stores
+.IX Subsection "Stores"
+.IP file 4
+.IX Item "file"
+.PD 0
+.IP "org.openssl.winstore, see \fBOSSL_STORE\-winstore\fR\|(7)" 4
+.IX Item "org.openssl.winstore, see OSSL_STORE-winstore"
+.PD
+.PP
+In addition to this provider, all of these store algorithms are also
+available in the default provider.
.SH "SEE ALSO"
.IX Header "SEE ALSO"
\&\fBOSSL_PROVIDER\-default\fR\|(7), \fBopenssl\-core.h\fR\|(7),
\&\fBopenssl\-core_dispatch.h\fR\|(7), \fBprovider\fR\|(7)
-.SH "HISTORY"
+.SH HISTORY
.IX Header "HISTORY"
This functionality was added in OpenSSL 3.0.
-.SH "COPYRIGHT"
+.PP
+Support for \fBML-DSA\fR and <ML\-KEM> was added in OpenSSL 3.5.
+.SH COPYRIGHT
.IX Header "COPYRIGHT"
-Copyright 2020 The OpenSSL Project Authors. All Rights Reserved.
+Copyright 2020\-2025 The OpenSSL Project Authors. All Rights Reserved.
.PP
-Licensed under the Apache License 2.0 (the \*(L"License\*(R"). You may not use
+Licensed under the Apache License 2.0 (the "License"). You may not use
this file except in compliance with the License. You can obtain a copy
-in the file \s-1LICENSE\s0 in the source distribution or at
+in the file LICENSE in the source distribution or at
<https://www.openssl.org/source/license.html>.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-15 11:54:34 +0000