1 files changed, 126 insertions, 19 deletions

diff --git a/upstream/debian-unstable/man7/OSSL_PROVIDER-default.7ssl b/upstream/debian-unstable/man7/OSSL_PROVIDER-default.7ssl
index e535e445..b6325d94 100644
--- a/upstream/debian-unstable/man7/OSSL_PROVIDER-default.7ssl
+++ b/upstream/debian-unstable/man7/OSSL_PROVIDER-default.7ssl
@@ -55,7 +55,7 @@
 .\" ========================================================================
 .\"
 .IX Title "OSSL_PROVIDER-DEFAULT 7SSL"
-.TH OSSL_PROVIDER-DEFAULT 7SSL 2024-02-03 3.1.5 OpenSSL
+.TH OSSL_PROVIDER-DEFAULT 7SSL 2024-04-04 3.2.2-dev OpenSSL
 .\" For nroff, turn off justification.  Always turn off hyphenation; it makes
 .\" way too many mistakes in technical documents.
 .if n .ad l
@@ -107,6 +107,8 @@ The OpenSSL default provider supports these operations and algorithms:
 .IX Item "SHA2, see EVP_MD-SHA2"
 .IP "SHA3, see \fBEVP_MD\-SHA3\fR\|(7)" 4
 .IX Item "SHA3, see EVP_MD-SHA3"
+.IP "KECCAK, see \fBEVP_MD\-KECCAK\fR\|(7)" 4
+.IX Item "KECCAK, see EVP_MD-KECCAK"
 .IP "KECCAK-KMAC, see \fBEVP_MD\-KECCAK\-KMAC\fR\|(7)" 4
 .IX Item "KECCAK-KMAC, see EVP_MD-KECCAK-KMAC"
 .IP "SHAKE, see \fBEVP_MD\-SHAKE\fR\|(7)" 4
@@ -135,8 +137,6 @@ The OpenSSL default provider supports these operations and algorithms:
 .IX Item "CAMELLIA, see EVP_CIPHER-CAMELLIA"
 .IP "3DES, see \fBEVP_CIPHER\-DES\fR\|(7)" 4
 .IX Item "3DES, see EVP_CIPHER-DES"
-.IP "SEED, see \fBEVP_CIPHER\-SEED\fR\|(7)" 4
-.IX Item "SEED, see EVP_CIPHER-SEED"
 .IP "SM4, see \fBEVP_CIPHER\-SM4\fR\|(7)" 4
 .IX Item "SM4, see EVP_CIPHER-SM4"
 .IP "ChaCha20, see \fBEVP_CIPHER\-CHACHA\fR\|(7)" 4
@@ -169,6 +169,8 @@ The OpenSSL default provider supports these operations and algorithms:
 .IP "HKDF, see \fBEVP_KDF\-HKDF\fR\|(7)" 4
 .IX Item "HKDF, see EVP_KDF-HKDF"
 .PD 0
+.IP "TLS13\-KDF, see \fBEVP_KDF\-TLS13_KDF\fR\|(7)" 4
+.IX Item "TLS13-KDF, see EVP_KDF-TLS13_KDF"
 .IP "SSKDF, see \fBEVP_KDF\-SS\fR\|(7)" 4
 .IX Item "SSKDF, see EVP_KDF-SS"
 .IP "PBKDF2, see \fBEVP_KDF\-PBKDF2\fR\|(7)" 4
@@ -191,6 +193,10 @@ The OpenSSL default provider supports these operations and algorithms:
 .IX Item "SCRYPT, see EVP_KDF-SCRYPT"
 .IP "KRB5KDF, see \fBEVP_KDF\-KRB5KDF\fR\|(7)" 4
 .IX Item "KRB5KDF, see EVP_KDF-KRB5KDF"
+.IP "HMAC-DRBG, see \fBEVP_KDF\-HMAC\-DRBG\fR\|(7)" 4
+.IX Item "HMAC-DRBG, see EVP_KDF-HMAC-DRBG"
+.IP "ARGON2, see \fBEVP_KDF\-ARGON2\fR\|(7)" 4
+.IX Item "ARGON2, see EVP_KDF-ARGON2"
 .PD
 .SS "Key Exchange"
 .IX Subsection "Key Exchange"
@@ -203,6 +209,12 @@ The OpenSSL default provider supports these operations and algorithms:
 .IX Item "X25519, see EVP_KEYEXCH-X25519"
 .IP "X448, see \fBEVP_KEYEXCH\-X448\fR\|(7)" 4
 .IX Item "X448, see EVP_KEYEXCH-X448"
+.IP TLS1\-PRF 4
+.IX Item "TLS1-PRF"
+.IP HKDF 4
+.IX Item "HKDF"
+.IP SCRYPT 4
+.IX Item "SCRYPT"
 .PD
 .SS "Asymmetric Signature"
 .IX Subsection "Asymmetric Signature"
@@ -211,6 +223,14 @@ The OpenSSL default provider supports these operations and algorithms:
 .PD 0
 .IP "RSA, see \fBEVP_SIGNATURE\-RSA\fR\|(7)" 4
 .IX Item "RSA, see EVP_SIGNATURE-RSA"
+.IP "ED25519, see \fBEVP_SIGNATURE\-ED25519\fR\|(7)" 4
+.IX Item "ED25519, see EVP_SIGNATURE-ED25519"
+.IP "ED448, see \fBEVP_SIGNATURE\-ED448\fR\|(7)" 4
+.IX Item "ED448, see EVP_SIGNATURE-ED448"
+.IP "ECDSA, see \fBEVP_SIGNATURE\-ECDSA\fR\|(7)" 4
+.IX Item "ECDSA, see EVP_SIGNATURE-ECDSA"
+.IP SM2 4
+.IX Item "SM2"
 .IP "HMAC, see \fBEVP_SIGNATURE\-HMAC\fR\|(7)" 4
 .IX Item "HMAC, see EVP_SIGNATURE-HMAC"
 .IP "SIPHASH, see \fBEVP_SIGNATURE\-Siphash\fR\|(7)" 4
@@ -232,23 +252,53 @@ The OpenSSL default provider supports these operations and algorithms:
 .IX Subsection "Asymmetric Key Encapsulation"
 .IP "RSA, see \fBEVP_KEM\-RSA\fR\|(7)" 4
 .IX Item "RSA, see EVP_KEM-RSA"
+.PD 0
+.IP "X25519, see \fBEVP_KEM\-X25519\fR\|(7)" 4
+.IX Item "X25519, see EVP_KEM-X25519"
+.IP "X448, see \fBEVP_KEM\-X448\fR\|(7)" 4
+.IX Item "X448, see EVP_KEM-X448"
+.IP "EC, see \fBEVP_KEM\-EC\fR\|(7)" 4
+.IX Item "EC, see EVP_KEM-EC"
+.PD
 .SS "Asymmetric Key Management"
 .IX Subsection "Asymmetric Key Management"
-.PD 0
 .IP "DH, see \fBEVP_KEYMGMT\-DH\fR\|(7)" 4
 .IX Item "DH, see EVP_KEYMGMT-DH"
+.PD 0
 .IP "DHX, see \fBEVP_KEYMGMT\-DHX\fR\|(7)" 4
 .IX Item "DHX, see EVP_KEYMGMT-DHX"
 .IP "DSA, see \fBEVP_KEYMGMT\-DSA\fR\|(7)" 4
 .IX Item "DSA, see EVP_KEYMGMT-DSA"
 .IP "RSA, see \fBEVP_KEYMGMT\-RSA\fR\|(7)" 4
 .IX Item "RSA, see EVP_KEYMGMT-RSA"
+.IP RSA-PSS 4
+.IX Item "RSA-PSS"
 .IP "EC, see \fBEVP_KEYMGMT\-EC\fR\|(7)" 4
 .IX Item "EC, see EVP_KEYMGMT-EC"
 .IP "X25519, see \fBEVP_KEYMGMT\-X25519\fR\|(7)" 4
 .IX Item "X25519, see EVP_KEYMGMT-X25519"
 .IP "X448, see \fBEVP_KEYMGMT\-X448\fR\|(7)" 4
 .IX Item "X448, see EVP_KEYMGMT-X448"
+.IP "ED25519, see \fBEVP_KEYMGMT\-ED25519\fR\|(7)" 4
+.IX Item "ED25519, see EVP_KEYMGMT-ED25519"
+.IP "ED448, see \fBEVP_KEYMGMT\-ED448\fR\|(7)" 4
+.IX Item "ED448, see EVP_KEYMGMT-ED448"
+.IP TLS1\-PRF 4
+.IX Item "TLS1-PRF"
+.IP HKDF 4
+.IX Item "HKDF"
+.IP SCRYPT 4
+.IX Item "SCRYPT"
+.IP "HMAC, see \fBEVP_KEYMGMT\-HMAC\fR\|(7)" 4
+.IX Item "HMAC, see EVP_KEYMGMT-HMAC"
+.IP "SIPHASH, see \fBEVP_KEYMGMT\-Siphash\fR\|(7)" 4
+.IX Item "SIPHASH, see EVP_KEYMGMT-Siphash"
+.IP "POLY1305, see \fBEVP_KEYMGMT\-Poly1305\fR\|(7)" 4
+.IX Item "POLY1305, see EVP_KEYMGMT-Poly1305"
+.IP "CMAC, see \fBEVP_KEYMGMT\-CMAC\fR\|(7)" 4
+.IX Item "CMAC, see EVP_KEYMGMT-CMAC"
+.IP "SM2, see \fBEVP_KEYMGMT\-SM2\fR\|(7)" 4
+.IX Item "SM2, see EVP_KEYMGMT-SM2"
 .PD
 .SS "Random Number Generation"
 .IX Subsection "Random Number Generation"
@@ -264,25 +314,82 @@ The OpenSSL default provider supports these operations and algorithms:
 .IP "TEST-RAND, see \fBEVP_RAND\-TEST\-RAND\fR\|(7)" 4
 .IX Item "TEST-RAND, see EVP_RAND-TEST-RAND"
 .PD
+.PP
+In addition to this provider, the "SEED-SRC" algorithm is also available in the
+base provider.
 .SS "Asymmetric Key Encoder"
 .IX Subsection "Asymmetric Key Encoder"
-The default provider also includes all of the encoding algorithms
-present in the base provider.  Some of these have the property "fips=yes",
-to allow them to be used together with the FIPS provider.
-.IP "RSA, see \fBOSSL_ENCODER\-RSA\fR\|(7)" 4
-.IX Item "RSA, see OSSL_ENCODER-RSA"
+.IP RSA 4
+.IX Item "RSA"
+.PD 0
+.IP RSA-PSS 4
+.IX Item "RSA-PSS"
+.IP DH 4
+.IX Item "DH"
+.IP DHX 4
+.IX Item "DHX"
+.IP DSA 4
+.IX Item "DSA"
+.IP EC 4
+.IX Item "EC"
+.IP ED25519 4
+.IX Item "ED25519"
+.IP ED448 4
+.IX Item "ED448"
+.IP X25519 4
+.IX Item "X25519"
+.IP X448 4
+.IX Item "X448"
+.IP SM2 4
+.IX Item "SM2"
+.PD
+.PP
+In addition to this provider, all of these encoding algorithms are also
+available in the base provider. Some of these algorithms may be used in
+combination with the FIPS provider.
+.SS "Asymmetric Key Decoder"
+.IX Subsection "Asymmetric Key Decoder"
+.IP RSA 4
+.IX Item "RSA"
+.PD 0
+.IP RSA-PSS 4
+.IX Item "RSA-PSS"
+.IP DH 4
+.IX Item "DH"
+.IP DHX 4
+.IX Item "DHX"
+.IP DSA 4
+.IX Item "DSA"
+.IP EC 4
+.IX Item "EC"
+.IP ED25519 4
+.IX Item "ED25519"
+.IP ED448 4
+.IX Item "ED448"
+.IP X25519 4
+.IX Item "X25519"
+.IP X448 4
+.IX Item "X448"
+.IP SM2 4
+.IX Item "SM2"
+.IP DER 4
+.IX Item "DER"
+.PD
+.PP
+In addition to this provider, all of these decoding algorithms are also
+available in the base provider. Some of these algorithms may be used in
+combination with the FIPS provider.
+.SS Stores
+.IX Subsection "Stores"
+.IP file 4
+.IX Item "file"
 .PD 0
-.IP "DH, see \fBOSSL_ENCODER\-DH\fR\|(7)" 4
-.IX Item "DH, see OSSL_ENCODER-DH"
-.IP "DSA, see \fBOSSL_ENCODER\-DSA\fR\|(7)" 4
-.IX Item "DSA, see OSSL_ENCODER-DSA"
-.IP "EC, see \fBOSSL_ENCODER\-EC\fR\|(7)" 4
-.IX Item "EC, see OSSL_ENCODER-EC"
-.IP "X25519, see \fBOSSL_ENCODER\-X25519\fR\|(7)" 4
-.IX Item "X25519, see OSSL_ENCODER-X25519"
-.IP "X448, see \fBOSSL_ENCODER\-X448\fR\|(7)" 4
-.IX Item "X448, see OSSL_ENCODER-X448"
+.IP org.openssl.winstore 4
+.IX Item "org.openssl.winstore"
 .PD
+.PP
+In addition to this provider, all of these store algorithms are also
+available in the base provider.
 .SH "SEE ALSO"
 .IX Header "SEE ALSO"
 \&\fBopenssl\-core.h\fR\|(7), \fBopenssl\-core_dispatch.h\fR\|(7), \fBprovider\fR\|(7),