24 Aug, 2016
1 commit
-
With a public notification, NIST now allows the use of RSA keys with a
modulus >= 2048 bits. The new rule allows any modulus size >= 2048 bits
provided that either 2048 or 3072 bits are supported at least so that
the entire RSA implementation can be CAVS tested.This patch fixes the inability to boot the kernel in FIPS mode, because
certs/x509.genkey defines a 4096 bit RSA key per default. This key causes
the RSA signature verification to fail in FIPS mode without the patch
below.Signed-off-by: Stephan Mueller
Signed-off-by: Herbert Xu
05 Jul, 2016
1 commit
-
When parsing a private key, store all non-optional fields. These
are required for enabling CRT mode for decrypt and verifySigned-off-by: Salvatore Benedetto
Signed-off-by: Herbert Xu
15 Jun, 2016
1 commit
-
Return the raw key with no other processing so that the caller
can copy it or MPI parse it, etc.The scope is to have only one ANS.1 parser for all RSA
implementations.Update the RSA software implementation so that it does
the MPI conversion on top.Signed-off-by: Tudor Ambarus
Signed-off-by: Herbert Xu
14 Oct, 2015
1 commit
-
Setkey function has been split into set_priv_key and set_pub_key.
Akcipher requests takes sgl for src and dst instead of void *.
Users of the API i.e. two existing RSA implementation and
test mgr code have been updated accordingly.Signed-off-by: Tadeusz Struk
Signed-off-by: Herbert Xu
21 Jul, 2015
1 commit
-
The condition checking allowed key length was invalid.
Reported-by: Dan Carpenter
Signed-off-by: Tadeusz Struk
Signed-off-by: Herbert Xu
17 Jun, 2015
1 commit
-
Add a new rsa generic SW implementation.
This implements only cryptographic primitives.Signed-off-by: Tadeusz Struk
Added select on ASN1.
Signed-off-by: Herbert Xu