1 files changed, 21 insertions, 4 deletions

diff --git a/doc/luaossl.tex b/doc/luaossl.tex
index 5ac7761..cebdf52 100644
--- a/doc/luaossl.tex
+++ b/doc/luaossl.tex
@@ -313,7 +313,7 @@ Set the private key component to that described by the PEM encoded private key i
 
 \subsubsection[\fn{pkey:sign}]{\fn{pkey:sign($digest$)}}
 
-Sign data which has been consumed by the specified \module{openssl.digest} $digest$. Digests and keys are not all interchangeable. For example, an elliptic curve key requires a digest of type ``ecdsa-with-SHA1'', while DSA requires ``dss1''. OpenSSL supports more varied digests for RSA.
+Sign data which has been consumed by the specified \module{openssl.digest} $digest$. Digests and keys are not all interchangeable.
 
 Returns the signature as an opaque binary string\footnote{Elliptic curve signatures are two X.509 DER-encoded numbers, for example, while RSA signatures are encrypted DER structures.} on success, and throws an error otherwise.
 
@@ -1005,6 +1005,24 @@ Returns the option flags of the SSL connection instance. See \fn{openssl.ssl.con
 
 Clears the option flags of the SSL connection instance. See \fn{openssl.ssl.context:clearOptions}.
 
+\subsubsection[\fn{ssl:setStore}]{\fn{ssl:setStore($store$)}}
+
+Associate the \module{openssl.x509.store} object $store$ with $ssl$ for both verification and chain building. Replaces any existing stores.
+
+\emph{Only supported since OpenSSL 1.0.2.}
+
+\subsubsection[\fn{ssl:setChainStore}]{\fn{ssl:setChainStore($store$)}}
+
+Associate the \module{openssl.x509.store} object $store$ with $ssl$ for chain building. Replaces any existing store.
+
+\emph{Only supported since OpenSSL 1.0.2.}
+
+\subsubsection[\fn{ssl:setVerifyStore}]{\fn{ssl:setVerifyStore($store$)}}
+
+Associate the \module{openssl.x509.store} object $store$ with $ssl$ for verification. Replaces any existing store.
+
+\emph{Only supported since OpenSSL 1.0.2.}
+
 \subsubsection[\fn{ssl:setVerify}]{\fn{ssl:setVerify([$mode$][, $depth$])}}
 
 Sets the verification mode flags and maximum validation chain depth.
@@ -1349,9 +1367,8 @@ local digest = require"openssl.digest"
 -- generate a public/private key pair
 local key = pkey.new{ type = "EC", curve = "prime192v1" }
 
--- digest our message using an appropriate digest ("ecdsa-with-SHA1" for EC;
--- "dss1" for DSA; and "sha1", "sha256", etc for RSA).
-local data = digest.new"ecdsa-with-SHA1"
+-- digest our message using an appropriate digest
+local data = digest.new "sha1"
 data:update(... or "hello world")
 
 -- generate a signature for our data