On Mon, Aug 15, 2016, Norm Green wrote: > The man page for EVP_SealInit says: > > "The public key must be RSA because it is the only OpenSSL public > key algorithm that supports key transport." > > 1 ) Is this still true? Yes: the only algorithm we currently support which handles key transport is RSA. > 2) Will this restriction change now that RSA key transport is being > dropped from TLS 1.3 (or so I've read...)? > Don't undertand. The algorithm limitation has nothing to do with TLS restrictions. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org
