<div dir="auto">The change in itself is quite trivial, just editing the dgst manpage to remove the reference to pkeyutl.<div dir="auto"><br></div><div dir="auto">The issue has more instructions and the idea was to use it as a way to let a new developer familiarize with OpenSSL contributing guidelines and process.</div><div dir="auto"><br></div><div dir="auto">Another user already started working on it, though! </div><div dir="auto"><br></div><div dir="auto">If anyone is interested we have more "good first issue" items on github that we considered a good starting point for users from the community that are willing to start contributing to the project by coding or working on the documentation. </div><div dir="auto"><br></div><div dir="auto"><br></div><div dir="auto">Nicola </div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Sun, Apr 26, 2020, 04:01 yang berlin <<a href="mailto:yangbolinzju@gmail.com">yangbolinzju@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Sure, I can help. <br><div>It's my pleasure to help with the project.</div><div>Since you have opened an issue. Then what should I do?</div><div><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">Nicola Tuveri <<a href="mailto:nic.tuv@gmail.com" target="_blank" rel="noreferrer">nic.tuv@gmail.com</a>> 于2020年4月24日周五 下午11:17写道:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div class="gmail_default" style="font-family:arial,sans-serif">That's right! Thanks Viktor for pointing that out!!<br><br>I just opened an issue to track this: <a href="https://github.com/openssl/openssl/issues/11633" style="font-family:Arial,Helvetica,sans-serif" target="_blank" rel="noreferrer">https://github.com/openssl/openssl/issues/11633</a><br><br>We warmly welcome contributions from everyone and this could be a good first issue to work on: Yang (as the person that started this thread and noticed the issue first) or anyone else from the community, are you willing to get your hands dirty and help out the project?<br><br><br> Nicola<br><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Thu, 23 Apr 2020 at 19:33, Viktor Dukhovni <<a href="mailto:openssl-users@dukhovni.org" target="_blank" rel="noreferrer">openssl-users@dukhovni.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">On Thu, Apr 23, 2020 at 11:23:35AM +0200, Nicola Tuveri wrote:<br>
<br>
> > On 22/04/2020 18:12, Viktor Dukhovni wrote:<br>
> > > sadly the<br>
> > > EVP_PKEY_METHOD for ed25519 has a NULL sign() member, instead, somewhat<br>
> > > ironically, it has a digestsign() method. This is presumably to<br>
> > > distinguish between the pure and prehash variants. Therefore, presently<br>
> > > pkeyutl(1) indeed appears to not implement signing and verifying with<br>
> > > ed25519, this looks doable with modest effort.<br>
> ><br>
> > I'm fairly sure it used to have a "sign" function during the dev phase -<br>
> > but it was taken out. I forget the reasoning.<br>
> <br>
> Yes, that change was intentional, the reasoning is detailed in the<br>
> discussion in: <a href="https://github.com/openssl/openssl/pull/6284" rel="noreferrer noreferrer" target="_blank">https://github.com/openssl/openssl/pull/6284</a><br>
<br>
This did leave us with a documentation bug, the dgst(1) manpage suggests<br>
using pkeyutl(1) for ed25519 and ed448, but the latter does not work.<br>
<br>
The dgst(1) manpage probably needs a tweak to remove the misleading<br>
redirect. Or else backport the pkeyutl(1) support from 3.0, but we're<br>
not supposed to add features in 1.1.1x patch releases, and there are no<br>
plans for a 1.1.2.<br>
<br>
-- <br>
Viktor.<br>
</blockquote></div>
</blockquote></div>
</blockquote></div>