Do not allow PKCS #1.5 padding for encryption in FIPS
d8a13d97ccb6Unpublished
Actions

Edit Commit
Download Raw Diff
Edit Related Objects...
Edit Revisions
Edit Tasks
Mute Notifications
Award Token

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

Do not allow PKCS #1.5 padding for encryption in FIPS

* cipher/pubkey-util.c (_gcry_pk_util_data_to_mpi): Block PKCS #1.5
  padding for encryption in FIPS mode
* cipher/rsa.c (rsa_decrypt): Block PKCS #1.5 decryption in FIPS mode

Applied the master commit of:
c7709f7b23848abf4ba65cb99cb2a9e9c7ebdefc

GnuPG-bug-id: T5918
Signed-off-by: Jakub Jelen <jjelen@redhat.com>

Details

Provenance

Jakuje	Authored on Apr 1 2022, 6:29 PM
• gniibe	Committed on May 6 2022, 2:23 AM

Parents

rC9452640125d2: random: Not use secure memory for DRBG instance.

Branches

Unknown

Tags

Unknown

Event Timeline

Changes (2)

Path

Size

cipher/

pubkey-util.c

rsa.c

rCd8a13d97ccb6

View Options

cipher/pubkey-util.c