agent: RSA signature verification by gpg-agent.
cfbe6ba9cf14Unpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

agent: RSA signature verification by gpg-agent.

* g10/sign.c (do_sign): Let verify signature by gpg-agent.
* agent/pksign.c (agent_pksign_do): Call gcry_pk_verify for RSA.

RSA signature verification should be done to prevent attacks against
RSA CRT implementations and not to return invalid signature to
adversary. Newer libgcrypt does so. For older libgcrypt and
smartcards, gpg-agent does signature verification.

Details

Provenance

• gniibe

Authored on Sep 29 2015, 2:49 AM

Parents

rGf1effdc5ecd0: common: Provide two new error code replacements.

Branches

Unknown

Tags

Unknown

Event Timeline

NIIBE Yutaka <gniibe@fsij.org> committed rGcfbe6ba9cf14: agent: RSA signature verification by gpg-agent. (authored by NIIBE Yutaka <gniibe@fsij.org>).Sep 29 2015, 2:49 AM

Changes (2)

Path

Size

agent/

pksign.c

g10/

sign.c

rGcfbe6ba9cf14

View Options

agent/pksign.c