New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Set maskHash when creating parameters. #3920
Conversation
using 6d3167a8075 it crashes when generating and signing a file with specified MGF1 MD:
|
New version pushed. |
I'm now getting
for the same command. Is that really correct? |
At the same time
is successful and generates a key/certificate with sha512 as the MGF MD and sha256 as the signature MD. Both using 40876f13 |
No that's a separate bug. Should be fixed in new commit. |
looks good, can't cause it to misbehave any more two nits regarding documentation though:
|
Update: I'm going to add a few more commits to this. There weren't any tests to check the two fixes and to check one case (key generation caching bug) needs an extension of evp_test which I'm working on. |
Update: added keygen support to evp_test and tests to cover the fixes. |
Please reconfirm +1, well if you agree that is ;-) |
+1 reconfirm |
Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from #3920)
Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from #3920)
Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from #3920)
Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from #3920)
Checklist
This addresses #2963 when generating an RSA-PSS key we didn't set the cached mask parameter so if we signed using the key immediately it wouldn't use the correct PSS parameters.