delta/gnutls.git/lib/nettle, branch tmp-remove-debugging-code gitlab.com: gnutls/gnutls.git sign APIs: introduce RSA-RAW signing algorithm 2017-08-17T08:43:29+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-08-17T07:59:53+00:00 01c95e4df8d3132642ab3b2f57d8ba97509976ad This ensures that there is a signing algorithm for all the operations we support. Previously, we required GNUTLS_SIGN_UNKNOWN to be acceptable by signing functions to accomodate for raw RSA operations. Now we make that explicit and in the process clean-up the API. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
This ensures that there is a signing algorithm for all the operations
we support. Previously, we required GNUTLS_SIGN_UNKNOWN to be acceptable
by signing functions to accomodate for raw RSA operations. Now we make
that explicit and in the process clean-up the API.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
fuzzer: Suppress unsigned integer overflow in rnd-fuzzer.c 2017-08-16T07:44:19+00:00 Tim Rühsen tim.ruehsen@gmx.de 2017-08-11T16:31:35+00:00 2f84455552a083a2303cd2c7a4aca07fd3d55491 Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de> 
Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
fuzzer: added a fuzzer target 2017-08-16T07:39:52+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-08-09T06:24:59+00:00 d2e49df8ebc1b3a7e3a28059c099174365e0a546 This allows to compile the library with flags which will add predictable random generation and eliminate some crypto checks, in order for the library to be used for testing (fuzzying). Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
This allows to compile the library with flags which will add predictable
random generation and eliminate some crypto checks, in order for the
library to be used for testing (fuzzying).

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
rnd: use time_t for prng_reseed_time 2017-08-09T13:33:01+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-08-09T11:18:33+00:00 0e91397a3a5db3b5e0d654e9d089d44e9a73a65a This ensures that all time comparisons are done under the same type. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
This ensures that all time comparisons are done
under the same type.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
gnutls_pk_params_st: separate flags/qbits and curve 2017-08-08T06:30:01+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-08-07T14:23:29+00:00 2c5129f360384cc74aa94290c4edd1463d3e558f Previously we were using the field flags to store the size of q in case of GNUTLS_PK_DH, some key generation flags in case of GNUTLS_PK_RSA, and the curve in case of elliptic curve key. Separate this into multiple fields to reduce confusion on the field. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
Previously we were using the field flags to store the
size of q in case of GNUTLS_PK_DH, some key generation flags
in case of GNUTLS_PK_RSA, and the curve in case of elliptic
curve key. Separate this into multiple fields to reduce
confusion on the field.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
wrap_nettle_pk_fixup: added sanity check in RSA-PSS param checking 2017-08-06T09:35:34+00:00 Nikos Mavrogiannopoulos nmav@gnutls.org 2017-08-06T09:34:39+00:00 61c738ebca2135252279932c8b1dfb301636d20f Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org> 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
introduced error code GNUTLS_E_PK_INVALID_PUBKEY_PARAMS 2017-08-04T09:08:51+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-08-04T07:06:32+00:00 68fc06c0a963fe1cd3e907dec1e2571c457f953a This is being use to indicate errors in the public key parameters such as the RSA-PSS salt size or digest algorithm. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
This is being use to indicate errors in the public key parameters
such as the RSA-PSS salt size or digest algorithm.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
_rsa_pss_verify_digest: verify the validity of the salt_size length on verification 2017-08-04T09:08:51+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-08-03T13:16:08+00:00 a89a1604a5bdb8d009295bedd0967fa38aaea937 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
wrap_nettle_pk_fixup: check RSA PSS parameters for validity on import 2017-08-04T09:08:47+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-08-03T13:00:00+00:00 672af1d78af6289bbac88c89de8d42c2e5c6d693 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
pct_test: use local SPKI structure to override parameters if not set 2017-08-04T07:38:27+00:00 Nikos Mavrogiannopoulos nmav@redhat.com 2017-07-27T13:03:00+00:00 8fc0854c03bb54e55e069fa0a78d8a5c1c79a131 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com> 
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>