sm,dirmngr: Restrict allowed parameters used with rsaPSS.
c0d5c673542b
Actions

Description

sm,dirmngr: Restrict allowed parameters used with rsaPSS.

* sm/certcheck.c (extract_pss_params): Check the used PSS params.
* dirmngr/crlcache.c (finish_sig_check): Ditto.
* dirmngr/validate.c (check_cert_sig): Ditto.

------------------------ >8 ------------------------

See
https://www.metzdowd.com/pipermail/cryptography/2019-November/035449.html

GnuPG-bug-id: T4538
Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance

• werner

Authored on Apr 15 2020, 11:05 AM

Parents

rG50b320952e99: regexp: Fix generation of _unicode_mapping.c.

Branches

Unknown

Tags

Unknown

Tasks

T4538: Support PSS signed CRLs

Event Timeline

• werner added a task: T4538: Support PSS signed CRLs.Apr 15 2020, 11:11 AM

• werner committed rGc0d5c673542b: sm,dirmngr: Restrict allowed parameters used with rsaPSS. (authored by • werner).Apr 15 2020, 11:06 AM

Changes (3)

Path

Size

dirmngr/

crlcache.c

validate.c

sm/

certcheck.c

rGc0d5c673542b

View Options

dirmngr/crlcache.c

View Options

dirmngr/validate.c

View Options

sm,dirmngr: Restrict allowed parameters used with rsaPSS.c0d5c673542bActions

Description

------------------------ >8 ------------------------

Details

Event Timeline

Changes (3)

rGc0d5c673542b

dirmngr/crlcache.c

dirmngr/validate.c

sm/certcheck.c

sm,dirmngr: Restrict allowed parameters used with rsaPSS.
c0d5c673542b
Actions