projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cb49e74) | patch
Add PSS parameter restrictions.
authorDr. Stephen Henson <steve@openssl.org>
Mon, 5 Dec 2016 14:55:23 +0000 (14:55 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Sun, 8 Jan 2017 01:42:49 +0000 (01:42 +0000)
commit59029ca1134b5eb3b9d56190ff330120f3344e89
tree9769154a5b443134f61b8120910da4c52d2a0561tree | snapshot
parentcb49e7497ac3318b486d08ba7e44394dafbb5776commit | diff
Add PSS parameter restrictions.

If a key contains any PSS parameter restrictions set them during
sign or verification initialisation. Parameters now become the
default values for sign/verify. Digests are fixed and any attempt
to change them is an error. The salt length can be modified but
must not be less than the minimum value.

If the key parameters are invalid then verification or signing
initialisation returns an error.

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2177)
crypto/rsa/rsa_pmeth.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.