forked from pool/libgcrypt
Pedro Monreal Gonzalez
b5b243be7f
* Add --enable-marvin-workaround to spec to enable workaround * Fix timing based side-channel in RSA implementation ( Marvin attack ) * Add libgcrypt-CVE-2024-2236.patch OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libgcrypt?expand=0&rev=193
45 lines
1.3 KiB
Diff
45 lines
1.3 KiB
Diff
From 8404a048b7c58eb903717e09cffaa7735f7d8520 Mon Sep 17 00:00:00 2001
|
|
From: NIIBE Yutaka <gniibe@fsij.org>
|
|
Date: Tue, 4 Mar 2025 13:29:28 +0900
|
|
Subject: [PATCH 01/14] tests: Allow tests with !USE_RSA.
|
|
MIME-Version: 1.0
|
|
Content-Type: text/plain; charset=UTF-8
|
|
Content-Transfer-Encoding: 8bit
|
|
|
|
* tests/t-fips-service-ind.c [USE_RSA] (check_pk_s_v): Ifdef-out.
|
|
|
|
--
|
|
|
|
Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>
|
|
Signed-off-by: Lucas Mülling <lucas.mulling@suse.com>
|
|
---
|
|
tests/t-fips-service-ind.c | 5 ++++-
|
|
1 file changed, 4 insertions(+), 1 deletion(-)
|
|
|
|
diff --git a/tests/t-fips-service-ind.c b/tests/t-fips-service-ind.c
|
|
index 99b84c8f..a082b258 100644
|
|
--- a/tests/t-fips-service-ind.c
|
|
+++ b/tests/t-fips-service-ind.c
|
|
@@ -290,7 +290,9 @@ check_pk_s_v (int reject)
|
|
" 00112233445566778899AABBCCDDEEFF000102030405060708090A0B0C0D0E0F"
|
|
" 00112233445566778899AABBCCDDEEFF000102030405060708090A0B0C0D0E0F#))",
|
|
0
|
|
- },
|
|
+ }
|
|
+#if USE_RSA
|
|
+ ,
|
|
{ /* RSA with compliant hash for signing */
|
|
"(private-key"
|
|
" (rsa"
|
|
@@ -559,6 +561,7 @@ check_pk_s_v (int reject)
|
|
" (hash sha1 #11223344556677889900AABBCCDDEEFF10203040#))\n",
|
|
1
|
|
}
|
|
+#endif /* USE_RSA */
|
|
};
|
|
int tvidx;
|
|
gpg_error_t err;
|
|
--
|
|
2.49.0
|
|
|