RSA Digital Signature generation and verification is specified in IETF RFC 8017 - rather than ANSI X9.31

[paulidale]

Change documentation code comments. Verify if anything has changed or not. Update if there have been changes.

Section 5

related to #319

[slontis]

This is a bit of a strange request

ANSI X9.31covers the X931 padding mode format, and mainly addresses Signature Algorithms for things such as keyGen, RandomNumberGen, PrimeTests. This was used by FIPS 186-2.

this means it has little to no overlap with RFC 8017 which covers RSA PSS and OAEP.

OpenSSL has a low level version of RSA_X931_generate_key_ex() which is not used by providers. So the only place this is being used is as a padding mode for RSA signatures.

So I think the main check will be to make RSA signing not allowed with X9.31 padding.