Do not allow PKCS #1.5 padding for encryption in FIPS
c7709f7b2384
Actions

Description

Do not allow PKCS #1.5 padding for encryption in FIPS

* cipher/pubkey-util.c (_gcry_pk_util_data_to_mpi): Block PKCS #1.5
  padding for encryption in FIPS mode
* cipher/rsa.c (rsa_decrypt): Block PKCS #1.5 decryption in FIPS mode

GnuPG-bug-id: T5918
Signed-off-by: Jakub Jelen <jjelen@redhat.com>

Details

Provenance

Jakuje	Authored on Apr 1 2022, 6:29 PM
• gniibe	Committed on Apr 21 2022, 3:21 AM

Parents

rCf436bf4451cb: random: Not use secure memory for DRBG instance.

Branches

Unknown

Tags

Unknown

Reverted By

rCe83280b36be3: Revert "Do not allow PKCS #1.5 padding for encryption in FIPS"

Tasks

T5918: Disable RSA PKCS #1.5 encryption in FIPS mode

Event Timeline

• gniibe committed rCc7709f7b2384: Do not allow PKCS #1.5 padding for encryption in FIPS (authored by Jakuje).Apr 21 2022, 3:21 AM

• gniibe added a task: T5918: Disable RSA PKCS #1.5 encryption in FIPS mode.Apr 21 2022, 3:25 AM

• gniibe added a reverting change: rCe83280b36be3: Revert "Do not allow PKCS #1.5 padding for encryption in FIPS".Oct 19 2022, 7:17 AM

Changes (2)

Path

Size

cipher/

pubkey-util.c

rsa.c

rCc7709f7b2384

View Options

cipher/pubkey-util.c

View Options

Do not allow PKCS #1.5 padding for encryption in FIPSc7709f7b2384Actions

Description

Details

Event Timeline

Changes (2)

rCc7709f7b2384

cipher/pubkey-util.c

cipher/rsa.c

Do not allow PKCS #1.5 padding for encryption in FIPS
c7709f7b2384
Actions