p11tool: allow signing with RSA-PSS and specifying an explicit hash

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2017-08-25 10:53:51 +0200
committer: Nikos Mavrogiannopoulos <nmav@gnutls.org> 2017-08-27 15:58:28 +0200
commit: 8c71c2d9bcd72a9b3b6d0e69fa0a1362d18ce350 (patch)
tree: 13a1a2299e881edd06e73be823854ed681c5efa8 /src/p11tool-args.def
parent: 4ef8f85693eeb11279aa418d9ef25a79e32c27ce (diff)
download: gnutls-8c71c2d9bcd72a9b3b6d0e69fa0a1362d18ce350.tar.gz
1 files changed, 16 insertions, 0 deletions
diff --git a/src/p11tool-args.def b/src/p11tool-args.def
index ded9f3e3e7..be97aeddc8 100644
--- a/src/p11tool-args.def
+++ b/src/p11tool-args.def
@@ -424,6 +424,22 @@ the signed data.";
 };
 
 flag = {
+    name      = sign-params;
+    arg-type  = string;
+    descrip   = "Sign with a specific signature algorithm";
+    doc = "This option can be combined with --test-sign, to sign with
+a specific signature algorithm variant. The only option supported is 'RSA-PSS', and should be
+specified in order to use RSA-PSS signature on RSA keys.";
+};
+
+flag = {
+    name      = hash;
+    arg-type  = string;
+    descrip   = "Hash algorithm to use for signing";
+    doc = "This option can be combined with test-sign. Available hash functions are SHA1, RMD160, SHA256, SHA384, SHA512, SHA3-224, SHA3-256, SHA3-384, SHA3-512.";
+};
+
+flag = {
     name      = generate-random;
     descrip   = "Generate random data";
     arg-type  = number;
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2017-08-25 10:53:51 +0200
committer	Nikos Mavrogiannopoulos <nmav@gnutls.org>	2017-08-27 15:58:28 +0200
commit	8c71c2d9bcd72a9b3b6d0e69fa0a1362d18ce350 (patch)
tree	13a1a2299e881edd06e73be823854ed681c5efa8 /src/p11tool-args.def
parent	4ef8f85693eeb11279aa418d9ef25a79e32c27ce (diff)
download	gnutls-8c71c2d9bcd72a9b3b6d0e69fa0a1362d18ce350.tar.gz