doc: note that the FIPS provider contains some non-approved algorithms.

author Pauli <paul.dale@oracle.com>

Thu, 16 Apr 2020 00:17:07 +0000 (10:17 +1000)

committer Pauli <paul.dale@oracle.com>

Fri, 17 Apr 2020 09:51:37 +0000 (19:51 +1000)
author Pauli <paul.dale@oracle.com>
Thu, 16 Apr 2020 00:17:07 +0000 (10:17 +1000)
committer Pauli <paul.dale@oracle.com>
Fri, 17 Apr 2020 09:51:37 +0000 (19:51 +1000)
diff --git a/doc/man7/provider.pod b/doc/man7/provider.pod

index de8e2499d9103eea85f57cde544d0dce587de949..fcb9fa1122c554ff34c29a91b7156c59841d6caf 100644 (file)
--- a/doc/man7/provider.pod
+++ b/doc/man7/provider.pod
@@ -274,9 +274,10 @@ be loaded explicitly, either in code or through OpenSSL configuration
  (see L<config(5)>).
  Should it be needed (if other providers are loaded and offer
  implementations of the same algorithms), the property "provider=fips" can
-be used as a search criterion for these implementations. All algorithm
+be used as a search criterion for these implementations. All approved algorithm
  implementations in the FIPS provider can also be selected with the property
-"fips=yes".
+"fips=yes". The FIPS provider also contains a number of non-approved algorithm
+implementations and these can be selected with the property "fips=no".
  
  =head2 Legacy provider
author	Pauli <paul.dale@oracle.com>
	Thu, 16 Apr 2020 00:17:07 +0000 (10:17 +1000)
committer	Pauli <paul.dale@oracle.com>
	Fri, 17 Apr 2020 09:51:37 +0000 (19:51 +1000)