TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-05-11 14:38:17 +02:00
Code Issues Packages Projects Releases Wiki Activity

PK signature function: require exact hash length

Browse Source 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine
2021-06-22 18:28:13 +02:00
parent e7885e5441
commit 9dbbc297a3
3 changed files with 34 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
ChangeLog.d/require-matching-hashlen-rsa.txt
View File

@@ -1,4 +1,5 @@
API changes
* Functions in the RSA module that accept a hashlen parameter now require
it to match the output size of the hash algorithm used, except when
signing raw data.
* Signature functions in the RSA and PK modules now require the hash
length parameter to be the size of the hash input. For RSA signatures
other than raw PKCS#1 v1.5, this must match the output size of the
specified hash algorithm.