mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-11-21 01:15:20 +08:00
Code Issues Packages Projects Releases Wiki Activity
58301e24f6
openssl/providers/common
History
Dimitri John Ledkov 973ddaa03f rsa-pss: add tests checking for SHAKE usage in RSA-PSS 
FIPS 186-5, RFC 8692, RFC 8702 all agree and specify that Shake shall
be used directly as MGF (not as a hash in MGF1). Add tests that try to
specify shake hash as MGF1 to ensure that fails.

Separately the above standards specify how to use SHAKE as a message
digest with either fixed or minimum output lengths. However, currently
shake is not part of allowed hashes.

Note that rsa_setup_md()/rsa_setup_mgf1_md() call
ossl_digest_rsa_sign_get_md_nid() ->
ossl_digest_get_approved_nid_with_sha1() ->
ossl_digest_get_approved_nid() which only contain sha1/sha2/sha3
digests without XOF.

The digest test case will need to be replace if/when shake with
minimum output lengths is added to ossl_digest_get_approved_nid().

Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24387)
2024-05-22 15:31:00 +02:00
..
der
include/prov
bio_prov.c
build.info
capabilities.c Exclude X25519 and X448 from capabilities advertised by FIPS provider 2024-04-19 10:32:27 +02:00
digest_to_nid.c rsa-pss: add tests checking for SHAKE usage in RSA-PSS 2024-05-22 15:31:00 +02:00
provider_ctx.c
provider_err.c
provider_seeding.c rand: add callbacks to cleanup the user entropy resp. nonce 2023-10-20 09:48:34 +01:00
provider_util.c
securitycheck_default.c
securitycheck_fips.c
securitycheck.c