doc update

[skip ci]
2018-10-06 11:40:16 +02:00 · 2018-10-06 11:40:16 +02:00 · 14b09138a9
commit 14b09138a9
parent 8349eda5a5
1 changed files with 29 additions and 3 deletions
--- a/doc/crypt.tex
+++ b/doc/crypt.tex
@ -4710,7 +4710,33 @@ int rsa_import_pkcs8(const unsigned char *in,

 This function can import RSA private keys serialized in PKCS\#8 format.

-It provides a \textit{password} parameter for the encrypted PKCS\#8 format, but this functionality is currently NOT implemented.
+Where \textit{key} is the RSA key structure (uninitialized), \textit{inlen} bytes of \textit{in} buffer is the DER encoded key,
+and \textit{pwdlen} bytes of \textit{pwd} is optional password/secret (use \textit{pwd = NULL} for keys without password protection).
+
+The library supports the following encryption algorithms:
+
+\begin{table}[H]
+\begin{center}
+\begin{tabular}{|l|l|}
+      \hline \textbf{Scheme} & \textbf{Algorithm}              \\
+      \hline PBES1           & pbeWithMD2AndDES-CBC            \\
+      \hline PBES1           & pbeWithMD2AndRC2-CBC            \\
+      \hline PBES1           & pbeWithMD5AndDES-CBC            \\
+      \hline PBES1           & pbeWithMD5AndRC2-CBC            \\
+      \hline PBES1           & pbeWithSHA1AndDES-CBC           \\
+      \hline PBES1           & pbeWithSHA1AndRC2-CBC           \\
+      \hline PBES1           & pbeWithSHAAnd3-KeyTripleDES-CBC \\
+      \hline PBES2 + PBKDF2  & desCBC                          \\
+      \hline PBES2 + PBKDF2  & rc2CBC                          \\
+      \hline PBES2 + PBKDF2  & des-EDE3-CBC                    \\
+      \hline PBES2 + PBKDF2  & aes128-CBC                      \\
+      \hline PBES2 + PBKDF2  & aes192-CBC                      \\
+      \hline PBES2 + PBKDF2  & aes256-CBC                      \\
+      \hline
+\end{tabular}
+\caption{Supported PKCS\#8 encryption algorithms of rsa\_import\_pkcs8()}
+\end{center}
+\end{table}

 \index{rsa\_import\_x509()}
 \begin{verbatim}
@ -5549,7 +5575,7 @@ int ecc_sign_hash_rfc7518(const unsigned char *in,
 This function creates the same ECDSA signature as \textit{ecc\_sign\_hash} only the output format is different.
 The format follows \url{https://tools.ietf.org/html/rfc7518#section-3.4}, sometimes it is also called plain signature.

-\index{ecc\_sign\_hash_ex()}
+\index{ecc\_sign\_hash\_ex()}
 \begin{verbatim}
 int ecc_sign_hash_ex(const unsigned char *in,
                           unsigned long  inlen,
@ -5595,7 +5621,7 @@ int ecc_verify_hash_rfc7518(const unsigned char *sig,
 This function validate the ECDSA signature as \textit{ecc\_verify\_hash} only the signature input format
 follows \url{https://tools.ietf.org/html/rfc7518#section-3.4}.

-\index{ecc\_verify\_hash_ex()}
+\index{ecc\_verify\_hash\_ex()}
 \begin{verbatim}
 int ecc_verify_hash_ex(const unsigned char *sig,
                             unsigned long  siglen,