projects / platform / core / security / key-manager.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0be3215) | patch
Forbid HashAlgorithm::NONE for DSA & ECDSA signatures 65/206265/3
authorKrzysztof Jackiewicz <k.jackiewicz@samsung.com>
Wed, 15 May 2019 15:46:58 +0000 (17:46 +0200)
committerTomasz Swierczek <t.swierczek@samsung.com>
Mon, 20 May 2019 09:08:19 +0000 (11:08 +0200)
commit79141629106d3097f8a4013d3744cef046265a3e
treebaaed4aa725f45a95ca81c692cc3800f97f2a105tree | snapshot
parent0be32159737cb86cdc1a319d752cfdaa58b872f3commit | diff
Forbid HashAlgorithm::NONE for DSA & ECDSA signatures

Openssl uses SHA1 if no hash algorithm is provided for DSA & ECDSA
signatures. TZ does not support that option at all. It's better to
forbid it.

This commit changes the API behavior and may lead to errors in clients
that used HashAlgorithm::NONE with DSA or ECDSA which is highly
unlikely.

Change-Id: I8522e8f157b5ef2d6599bb672ef790ee8ea48644
src/include/ckmc/ckmc-manager.h diff | blob | history
src/manager/crypto/sw-backend/internals.cpp diff | blob | history
src/manager/crypto/tz-backend/internals.cpp diff | blob | history
Domain: Security / Utilities;