security-and-privacy/gnupg
security-and-privacy
/
gnupg
mirror of git://git.gnupg.org/gnupg.git
1
0
Fork 0
Code Releases Activity
gnupg/sm
History
Werner Koch c0d5c67354
sm,dirmngr: Restrict allowed parameters used with rsaPSS. 
* sm/certcheck.c (extract_pss_params): Check the used PSS params.
* dirmngr/crlcache.c (finish_sig_check): Ditto.
* dirmngr/validate.c (check_cert_sig): Ditto.
--

GnuPG-bug-id: 4538

# ------------------------ >8 ------------------------
See
https://www.metzdowd.com/pipermail/cryptography/2019-November/035449.html

Signed-off-by: Werner Koch <wk@gnupg.org>
 		2020-04-15 11:06:59 +02:00
..
ChangeLog-2011 Generate the ChangeLog from commit logs. 2011-12-01 11:09:02 +01:00
Makefile.am Remove -I option to common. 2017-03-07 20:25:54 +09:00
call-agent.c gpg: Use gpgrt's new option parser to provide a global conf file. 2020-02-20 11:13:32 +01:00
call-dirmngr.c gpg: Use gpgrt's new option parser to provide a global conf file. 2020-02-20 11:13:32 +01:00
certchain.c sm: Consider certificates w/o CRL DP as valid. 2020-03-27 21:16:07 +01:00
certcheck.c sm,dirmngr: Restrict allowed parameters used with rsaPSS. 2020-04-15 11:06:59 +02:00
certdump.c sm: Fix a warning in an es_fopencooie function. 2020-04-01 09:58:11 +02:00
certlist.c sm: Print a better diagnostic for encryption certificate selection. 2019-06-04 09:24:03 +02:00
certreqgen-ui.c common: Extend function pubkey_algo_string. 2019-04-02 18:50:55 +02:00
certreqgen.c sm: Fix possible NULL deref in error messages of --gen-key. 2020-03-30 17:16:30 +02:00
decrypt.c sm: Support AES-256 key. 2019-08-05 10:15:08 +09:00
delete.c sm: Change keydb code to use the keybox locking. 2019-05-14 13:36:08 +02:00
encrypt.c gpg,sm: String changes for compliance diagnostics. 2017-07-28 17:46:43 +02:00
export.c Spelling cleanup. 2020-02-18 18:07:46 -05:00
fingerprint.c Spelling cleanup. 2020-02-18 18:07:46 -05:00
gpgsm-w32info.rc w32: Add icons and version information. 2013-05-07 21:35:48 +02:00
gpgsm.c sm: Consider certificates w/o CRL DP as valid. 2020-03-27 21:16:07 +01:00
gpgsm.h sm: Consider certificates w/o CRL DP as valid. 2020-03-27 21:16:07 +01:00
import.c Use the gpgrt log functions if possible. 2017-11-27 15:00:25 +01:00
keydb.c Merge branch 'switch-to-gpgk' into master 2019-09-27 15:44:23 +02:00
keydb.h sm: Add a couple of debug calls to the keydb module. 2019-05-15 08:52:21 +02:00
keylist.c sm: Add a couple of debug calls to the keydb module. 2019-05-15 08:52:21 +02:00
minip12.c all: fix spelling and typos 2018-10-24 15:56:18 -04:00
minip12.h Change all http://www.gnu.org in license notices to https:// 2016-11-05 12:02:19 +01:00
misc.c sm: Prepare algo mapping to handle values > 255. 2019-02-21 08:51:50 +01:00
passphrase.c Change all http://www.gnu.org in license notices to https:// 2016-11-05 12:02:19 +01:00
passphrase.h Change all http://www.gnu.org in license notices to https:// 2016-11-05 12:02:19 +01:00
qualified.c all: fix spelling and typos 2018-10-24 15:56:18 -04:00
server.c sm: New option --issuer-der for the listkey commands. 2020-02-03 14:54:23 +01:00
sign.c Spelling cleanup. 2020-02-18 18:07:46 -05:00
verify.c sm: Support rsaPSS verification also for CMS signatures. 2020-04-14 15:46:04 +02:00