Janos Follath
5f72119116
Add ChangeLog entry
2019-03-06 16:51:22 +00:00
Janos Follath
86d8c673c2
Fix ChangeLog entry ordering
2019-03-06 15:21:45 +00:00
Hanno Becker
ae499753a2
Adapt ChangeLog
2019-03-06 13:51:12 +00:00
irwir
5b9e318e34
Fix default port number information
2019-03-06 15:15:28 +02:00
Jaeden Amero
cef29a2fd0
Merge remote-tracking branch 'origin/pr/2401' into mbedtls-2.16
...
* origin/pr/2401:
Add ChangeLog entry
Fix private DER output shifted by one byte.
2019-03-05 16:37:13 +00:00
Jaeden Amero
b0abd1c84f
Merge remote-tracking branch 'origin/pr/2388' into mbedtls-2.16
...
* origin/pr/2388:
Update change log
all.sh: Test MBEDTLS_MPI_WINDOW_SIZE=1
Fix DEADCODE in mbedtls_mpi_exp_mod()
2019-03-05 16:34:40 +00:00
Jaeden Amero
203123b5b7
Merge remote-tracking branch 'origin/pr/1818' into mbedtls-2.16
...
* origin/pr/1818:
Move ChangeLog entry from Bugfix to Changes section
Adapt ChangeLog
Return from debugging functions if SSL context is unset
2019-03-05 16:28:18 +00:00
Jaeden Amero
daed232dd7
Merge remote-tracking branch 'origin/pr/2436' into mbedtls-2.16
...
* origin/pr/2436:
Use certificates from data_files and refer them
Specify server certificate to use in SHA-1 test
refactor CA and SRV certificates into separate blocks
refactor SHA-1 certificate defintions and assignment
refactor server SHA-1 certificate definition into a new block
define TEST_SRV_CRT_RSA_SOME in similar logic to TEST_CA_CRT_RSA_SOME
server SHA-256 certificate now follows the same logic as CA SHA-256 certificate
add entry to ChangeLog
2019-03-05 16:26:34 +00:00
Simon Butcher
799cd57c72
Merge remote-tracking branch 'restricted/pr/550' into mbedtls-2.16
...
* restricted/pr/550:
Update query_config.c
Fix failure in SSLv3 per-version suites test
Adjust DES exclude lists in test scripts
Clarify 3DES changes in ChangeLog
Fix documentation for 3DES removal
Exclude 3DES tests in test scripts
Fix wording of ChangeLog and 3DES_REMOVE docs
Reduce priority of 3DES ciphersuites
2019-03-01 13:05:43 +00:00
Simon Butcher
e6a3f57898
Merge remote-tracking branch 'public/pr/2429' into mbedtls-2.16
...
* public/pr/2429:
Add ChangeLog entry for unused bits in bitstrings
Improve docs for ASN.1 bitstrings and their usage
Add tests for (named) bitstring to suite_asn1write
Fix ASN1 bitstring writing
2019-03-01 13:04:04 +00:00
Simon Butcher
3664fdb5f6
Merge remote-tracking branch 'public/pr/2449' into mbedtls-2.16
...
* public/pr/2449:
Reword changelog entry
Reenable GnuTLS next based tests
2019-03-01 13:01:54 +00:00
Andres Amaya Garcia
03afdc0971
Clarify 3DES changes in ChangeLog
2019-03-01 10:30:11 +01:00
Andres Amaya Garcia
6882ec1521
Fix wording of ChangeLog and 3DES_REMOVE docs
2019-03-01 10:29:49 +01:00
Andres Amaya Garcia
5d8aade01d
Reduce priority of 3DES ciphersuites
2019-03-01 10:29:13 +01:00
Gilles Peskine
661610c8e0
Add changelog entry for mbedtls_ecdh_get_params robustness
2019-02-22 10:24:31 +01:00
Jaeden Amero
c5b57ef9e0
Merge remote-tracking branch 'origin/pr/2412' into mbedtls-2.16
2019-02-21 12:01:50 +00:00
Jaeden Amero
0981db57e1
Merge remote-tracking branch 'origin/pr/2385' into mbedtls-2.16
2019-02-21 11:58:58 +00:00
Jaeden Amero
fe50335a1f
Merge remote-tracking branch 'origin/pr/2389' into mbedtls-2.16
2019-02-21 11:53:51 +00:00
k-stachowiak
b4595d2527
Reword changelog entry
2019-02-19 12:41:30 +01:00
Antonin Décimo
d5f4759594
Fix #2370 , minor typos and spelling mistakes
2019-02-18 14:50:57 +00:00
ILUXONCHIK
57d7a16f00
add entry to ChangeLog
2019-02-12 17:10:21 +02:00
Andres Amaya Garcia
b5eb21a0a3
Add ChangeLog entry for unused bits in bitstrings
2019-02-11 21:26:03 +00:00
k-stachowiak
dc5893d553
Update change log
2019-02-11 09:56:23 +01:00
Andres Amaya Garcia
d4d55965bc
Add ChangeLog entries
2019-02-07 10:32:31 +00:00
k-stachowiak
73a8a0f7d9
Apply imperiative style in the changelog entry
2019-02-05 10:04:54 +01:00
Peter Kolbus
494ac010e4
Add ChangeLog entry
2019-02-04 17:14:32 +00:00
Christian Walther
59931badc4
Add ChangeLog entry
2019-01-31 19:22:34 +02:00
Jens Wiklander
402d7ac3db
Add ChangeLog entry
...
Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org>
2019-01-31 19:09:23 +02:00
Jaeden Amero
6f76795bf5
Merge remote-tracking branch 'origin/pr/2346' into mbedtls-2.16
2019-01-30 17:35:02 +00:00
Jaeden Amero
9fc7af017a
Merge remote-tracking branch 'origin/pr/2040' into mbedtls-2.16
2019-01-30 16:17:22 +00:00
Jaeden Amero
5788314d63
Merge remote-tracking branch 'origin/pr/2319' into mbedtls-2.16
2019-01-30 16:09:56 +00:00
Jaeden Amero
f0f8c09178
Merge remote-tracking branch 'origin/pr/1375' into mbedtls-2.16
2019-01-30 16:09:08 +00:00
Jaeden Amero
88227f9d8e
Merge remote-tracking branch 'origin/pr/2326' into mbedtls-2.16
2019-01-30 15:55:53 +00:00
Jaeden Amero
4002ada9f3
Merge remote-tracking branch 'origin/pr/2214' into mbedtls-2.16
2019-01-30 15:03:02 +00:00
Jaeden Amero
d81c57fc80
Merge remote-tracking branch 'origin/pr/2347' into mbedtls-2.16
2019-01-30 15:02:04 +00:00
k-stachowiak
c3bc44d449
Improve wording in the ChangeLog
2019-01-29 13:03:41 +01:00
k-stachowiak
722334278b
Reduce the timing tests complexity
2019-01-29 13:02:19 +01:00
Ron Eldor
ff7dc009cd
Update ChangeLog
...
Add ChangeLog entry describing the fix.
2019-01-17 21:32:24 +02:00
Jeffrey Martin
55a23e4971
update ChangLog credit
...
Signed-off-by: Jeffrey Martin <Jeffrey_Martin@rapid7.com>
2019-01-16 09:27:11 -06:00
Jeffrey Martin
60269ee453
update ChangLog per comments
...
Signed-off-by: Jeffrey Martin <Jeffrey_Martin@rapid7.com>
2019-01-15 09:03:24 -06:00
Jeffrey Martin
541055e197
Backport #1949 into mbedtls-2.16
...
Signed-off-by: Jeffrey Martin <Jeffrey_Martin@rapid7.com>
2019-01-14 18:16:34 -06:00
Hanno Becker
47da6df5e9
Adapt ChangeLog
2019-01-10 09:23:48 +00:00
Ron Eldor
5351afa5b1
Add entry describing the bug fix
...
Add entry describing the bug fix in `mbedtls_ecdsa_genkey()`.
2019-01-10 10:52:16 +02:00
Simon Butcher
874b60423e
Merge remote-tracking branch 'public/pr/975' into mbedtls-2.16
2019-01-08 16:34:19 +00:00
Simon Butcher
9e17c2df47
Merge remote-tracking branch 'public/pr/2128' into mbedtls-2.16
2019-01-08 16:33:28 +00:00
Simon Butcher
fc2edc3b8f
Merge remote-tracking branch 'public/pr/2228' into mbedtls-2.16
2019-01-08 15:29:18 +00:00
Darryl Green
955db7e824
Add ChangeLog entry
2019-01-07 13:12:57 +00:00
amisare
5c0b5b53a3
Update ChangeLog
2019-01-04 08:15:46 +08:00
Ron Eldor
4896c6bee5
Update ChangeLog
...
Co-Authored-By: amisare <243297288@qq.com>
2019-01-04 07:47:05 +08:00
Masashi Honma
fbda6126d6
Remove duplicate #include
...
Signed-off-by: Masashi Honma <masashi.honma@gmail.com>
2019-01-03 16:13:11 +09:00
Hanno Becker
8116ef7c81
Adapt ChangeLog
2019-01-02 11:38:14 +00:00
Hanno Becker
9d8e37fbc8
Adapt ChangeLog
2019-01-02 10:48:25 +00:00
Simon Butcher
104fe53938
Add Changelog entry for clang test-ref-configs.pl fix
2018-12-28 12:00:35 +00:00
GuHaijun
f81f41a3b5
Fix ChangeLog formate
2018-12-28 18:28:18 +08:00
GuHaijun
a306979ce1
Fix ChangeLog formate
2018-12-28 14:06:29 +08:00
GuHaijun
f7e742d3ce
Update ChangeLog
2018-12-28 13:22:33 +08:00
Simon Butcher
6c164e754b
Update the version of the library to 2.16.0
2018-12-21 10:51:51 +00:00
Simon Butcher
e046053ba1
Clarify ChangeLog old versions and param validations
...
Clarified and made more coherent the parameter validation feature, it's scope
and what has changed. Added version 2.14.1 to the history which was released on
a branch.
2018-12-20 16:17:02 +00:00
Simon Butcher
6df8c53cd4
Merge remote-tracking branch 'public/pr/2134' into development-restricted
2018-12-20 12:34:44 +00:00
Simon Butcher
1efda39f8a
Merge remote-tracking branch 'public/pr/2297' into development
2018-12-20 12:16:29 +00:00
Simon Butcher
780cf189b0
Merge remote-tracking branch 'public/pr/2271' into development
2018-12-20 12:15:08 +00:00
Simon Butcher
032c037052
Merge remote-tracking branch 'public/pr/2270' into development
2018-12-20 12:04:13 +00:00
Simon Butcher
a033633bb0
Merge remote-tracking branch 'public/pr/2269' into development
2018-12-20 12:02:56 +00:00
Simon Butcher
0bbf7f450d
Merge remote-tracking branch 'public/pr/2279' into development
2018-12-20 12:01:49 +00:00
k-stachowiak
270a125946
Add a change log entry
2018-12-19 19:02:39 +01:00
k-stachowiak
d409285cfa
Add a change log entry
2018-12-19 17:34:58 +01:00
k-stachowiak
9af22e4790
Update change log
2018-12-19 17:32:19 +01:00
Simon Butcher
54b789aa74
Merge remote-tracking branch 'public/pr/2298' into development
2018-12-19 08:08:14 +00:00
Andres Amaya Garcia
ba519b94a5
Add parameter validation to SHA-512 module
2018-12-18 15:06:39 +00:00
Andres Amaya Garcia
79e593f617
Add parameter validation to SHA-256 module
2018-12-18 11:41:20 +00:00
Andres Amaya Garcia
f7c43b3145
Add parameter validation to SHA-1
2018-12-18 11:37:28 +00:00
Hanno Becker
6640b0d9a3
Undo deprecation of MBEDTLS_ERR_BLOWFISH_INVALID_INPUT_LENGTH
2018-12-18 09:53:14 +00:00
Hanno Becker
a034369eca
Undo deprecation of MBEDTLS_ERR_ARIA_INVALID_INPUT_LENGTH
2018-12-18 09:53:11 +00:00
Hanno Becker
938f9e9bdb
Undo deprecation of MBEDTLS_ERR_CAMELLIA_INVALID_INPUT_LENGTH
...
Merging MBEDTLS_ERR_CAMELLIA_INVALID_INPUT_LENGTH and
MBEDTLS_ERR_CAMELLIA_INVALID_KEY_LENGTH is an API break.
2018-12-18 09:50:57 +00:00
Hanno Becker
d2f3a00062
Introduce single BLOWFISH error code for bad input data
...
Deprecate the old specific error codes
* MBEDTLS_ERR_BLOWFISH_INVALID_KEY_LENGTH
* MBEDTLS_ERR_BLOWFISH_INVALID_INPUT_LENGTH
2018-12-17 13:26:37 +00:00
Hanno Becker
4c029d09be
Introduce single CAMELLIA error code for bad input data
...
Deprecate the old specific error codes
* MBEDTLS_ERR_CAMELLIA_INVALID_KEY_LENGTH
* MBEDTLS_ERR_CAMELLIA_INVALID_INPUT_LENGTH
2018-12-17 13:26:33 +00:00
Hanno Becker
2f47550018
Introduce single ARIA error code for bad input data
...
Deprecate the old specific error codes
* MBEDTLS_ERR_ARIA_INVALID_KEY_LENGTH
* MBEDTLS_ERR_ARIA_INVALID_INPUT_LENGTH
2018-12-17 13:26:28 +00:00
Manuel Pégourié-Gonnard
9794098cfa
Clarify ChangeLog entry again.
2018-12-17 13:13:50 +01:00
Ron Eldor
8b0cf2e76f
Include configuration file to headers
...
Add inclusion to configration file in header files,
instead of relying on other header files to include
the configuration file. This issue resolves #1371
2018-12-16 12:02:50 +02:00
Manuel Pégourié-Gonnard
12dce61e09
Fix order of sections in ChangeLog
2018-12-13 09:48:40 +01:00
Manuel Pégourié-Gonnard
e7306d30a9
Improve some documentation and ChangeLog entry
2018-12-13 09:45:49 +01:00
Manuel Pégourié-Gonnard
cd2b29cd12
Improve wording in documentation and ChangeLog
2018-12-12 10:23:57 +01:00
Manuel Pégourié-Gonnard
8a46c22466
Add a ChangeLog entry for MBEDTLS_CHECK_PARAMS
2018-12-11 12:28:56 +01:00
Jaeden Amero
01b34fb316
Merge remote-tracking branch 'upstream-public/pr/2267' into development
2018-12-07 16:17:12 +00:00
Janos Follath
855def157f
Add changelog entry for ECC hardware bugfix
2018-12-07 11:05:03 +00:00
Jaeden Amero
9055a7d855
Merge remote-tracking branch 'upstream-public/pr/2175' into development
2018-12-06 16:09:58 +00:00
Jaeden Amero
bc1cf5cd36
Merge remote-tracking branch 'upstream-public/pr/2131' into development
2018-12-06 16:04:55 +00:00
Jaeden Amero
c27e3420b9
Merge remote-tracking branch 'upstream-public/pr/2117' into development
2018-12-06 15:59:32 +00:00
Jaeden Amero
083681c832
Merge remote-tracking branch 'upstream-public/pr/2039' into development
2018-12-06 15:55:34 +00:00
Jaeden Amero
41722ec29e
Merge remote-tracking branch 'upstream-public/pr/1958' into development
2018-12-06 15:53:56 +00:00
Janos Follath
b8f27060e0
Add Changelog entry for the new ECDH context
2018-12-06 12:22:46 +00:00
Simon Butcher
fabc6001ff
Clarify attribution for the Bleichenbacher's Cat fix
2018-12-01 22:43:08 +00:00
Simon Butcher
51b8a2fa87
Merge remote-tracking branch 'restricted/pr/512' into development
2018-11-29 16:56:02 +00:00
Simon Butcher
b9eb7866eb
Merge remote-tracking branch 'restricted/pr/535' into development
2018-11-29 16:54:51 +00:00
Simon Butcher
658618b6b2
Merge remote-tracking branch 'restricted/pr/516' into development
2018-11-29 16:53:51 +00:00
Gilles Peskine
50da016e5c
Add changelog entry for mbedtls_mpi_write_binary fix
2018-11-29 12:46:05 +01:00
Gilles Peskine
056f19c79f
Tweak RSA vulnerability changelog entry
...
* Correct the list of authors.
* Add the CVE number.
* Improve the impact description.
2018-11-29 12:45:01 +01:00
Ron Eldor
8a6917dc67
Update ChangeLog
...
Update the ChangeLog with the fix.
2018-11-27 10:37:02 +02:00
Gilles Peskine
5da0505842
Add ChangeLog entry for deprecation of mbedtls_xxx_drbg_update
...
Fixes ARMmbed/mbedtls#1798
2018-11-26 19:26:22 +01:00
Gilles Peskine
1b09f4027e
Add ChangeLog entry for wiping sensitive buffers
2018-11-26 16:19:22 +01:00
Ron Eldor
822b834bdf
Update ChangeLog
...
Add an entry in ChangeLog describing the fix.
2018-11-25 10:38:34 +02:00
Simon Butcher
c1b9892177
Update library version number to 2.14.0
2018-11-19 18:31:40 +00:00
Simon Butcher
b35e59d36d
Refine the language in the ChangeLog
...
Fix the language and descriptions in the ChangeLog following review of the
Release Notes for the next release.
2018-11-19 15:49:26 +00:00
Simon Butcher
681edee803
Fix language and formatting in ChangeLog
...
Changed the formatting and language in the ChangeLog to the house-style.
2018-11-15 13:01:23 +00:00
Simon Butcher
06d80cf172
Fix merge of Changelog 128bit CTR_DRBG entry
...
The entry describing support for 128-bit keys in CTR_DRBG was merged into the
wrong version.
2018-11-12 14:30:19 +00:00
Simon Butcher
de13963d66
Merge remote-tracking branch 'restricted/pr/520' into development-restricted-proposed
2018-11-12 14:30:16 +00:00
Simon Butcher
cdd1a6c872
Merge remote-tracking branch 'restricted/pr/510' into development-restricted-proposed
2018-11-12 14:29:14 +00:00
Simon Butcher
2ab14bb2ca
Clarified new platform errors in the ChangeLog
...
Clarified new platform errors and error code deprecations in the ChangeLog.
2018-11-09 20:09:33 +00:00
Simon Butcher
e51d4b336b
Merge remote-tracking branch 'public/pr/2054' into development-proposed
2018-11-09 19:57:53 +00:00
Ron Eldor
6aa9fb4916
Add ChangeLog entry
...
Add the ChangeLog entry describing the change.
2018-11-09 15:01:09 +00:00
Simon Butcher
53b45ec881
Merge remote-tracking branch 'public/pr/2079' into development-restricted-proposed
2018-11-07 12:58:44 +00:00
Simon Butcher
361ce6c302
Merge remote-tracking branch 'public/pr/2127' into development-restricted-proposed
2018-11-07 12:57:01 +00:00
Simon Butcher
241823aab8
Merge remote-tracking branch 'public/pr/1641' into development-restricted-proposed
2018-11-07 12:55:47 +00:00
Simon Butcher
42ab4ae033
Merge remote-tracking branch 'public/pr/2167' into development-restricted-proposed
2018-11-07 12:54:45 +00:00
Hanno Becker
f143a78011
Adapt ChangeLog
2018-11-06 17:59:28 +00:00
Hanno Becker
fe936c35c1
Adapt ChangeLog
2018-11-06 13:35:47 +00:00
Hanno Becker
d3445da3ef
Adapt ChangeLog
2018-11-05 11:54:06 +00:00
Simon Butcher
06f88e9c42
Merge remote-tracking branch 'public/pr/2007' into development-proposed
2018-11-04 19:12:57 +00:00
Simon Butcher
76646a4bac
Merge remote-tracking branch 'public/pr/1777' into development-proposed
2018-11-04 18:51:36 +00:00
Simon Butcher
2705beaeef
Merge remote-tracking branch 'public/pr/2095' into development-proposed
2018-11-04 18:48:04 +00:00
Hanno Becker
b12fd31415
Adapt ChangeLog
2018-11-02 10:49:09 +00:00
Simon Butcher
2b5be1e630
Fix ChangeLog entry for #2069
...
The fix for #2069 had accidentally been added to features, not bugfixes.
2018-10-30 15:55:10 +00:00
Hanno Becker
0bb204cab1
Adapt ChangeLog
2018-10-30 10:08:33 +00:00
Manuel Pégourié-Gonnard
d8e3a1ef66
Clarify documentation of ssl_set_own_cert()
...
fixes #507
2018-10-29 09:52:10 +01:00
Simon Butcher
7904f94550
Merge remote-tracking branch 'public/pr/1099' into development-proposed
2018-10-28 18:10:37 +00:00
Simon Butcher
4a865ef233
Add ChangeLog entry for PR #1618 - ARM DSP instruction support
2018-10-28 18:00:51 +00:00
Simon Butcher
5706452787
Merge remote-tracking branch 'public/pr/2056' into development-proposed
2018-10-28 17:21:29 +00:00
Simon Butcher
b4e5451326
Merge remote-tracking branch 'public/pr/2070' into development-proposed
2018-10-28 16:53:48 +00:00
Simon Butcher
17a0fab345
Merge remote-tracking branch 'public/pr/2111' into development-proposed
2018-10-28 16:22:18 +00:00
Simon Butcher
a07d86e8af
Merge remote-tracking branch 'public/pr/1902' into development
2018-10-27 18:36:55 +01:00
Simon Butcher
ddc9e26b3b
Merge remote-tracking branch 'public/pr/1627' into development
2018-10-27 18:27:41 +01:00
Simon Butcher
e783f4a767
Merge remote-tracking branch 'public/pr/1609' into development
2018-10-27 17:35:25 +01:00
Hanno Becker
a7d2fa7891
Adapt ChangeLog
2018-10-25 16:11:15 +01:00
Hanno Becker
e4f965da14
Adapt ChangeLog
2018-10-25 15:21:28 +01:00
Hanno Becker
5e0924cb52
Adapt ChangeLog
2018-10-18 12:12:14 +01:00
Hanno Becker
f24c3360fc
Adapt ChangeLog
2018-10-17 14:53:05 +01:00
Hanno Becker
7e1f3bedd9
Adapt ChangeLog
2018-10-15 13:20:28 +01:00
Manuel Pégourié-Gonnard
f0bbd7e3fd
Misc documentation fixes/improvements.
2018-10-15 13:22:41 +02:00
Manuel Pégourié-Gonnard
6346a75dfb
Merge branch 'development' into iotssl-1260-non-blocking-ecc-restricted
...
* development:
ssl-opt.sh: change expected output for large srv packet test with SSLv3
Adapt ChangeLog
Fix bug in SSL ticket implementation removing keys of age < 1s
ssl-opt.sh: Add DTLS session resumption tests
Add ChangeLog entry
Fix typo
Fix hmac_drbg failure in benchmark, with threading
Remove trailing whitespace
Remove trailing whitespace
ssl_server2: add buffer overhead for a termination character
Add missing large and small packet tests for ssl_server2
Added buffer_size and response_size options for ssl-server2. Added appropriate tests.
Solving a conflict in tests/ssl-opt.sh: two set of tests were added at the
same place (just after large packets):
- restartable ECC tests (in this branch)
- server-side large packets (in development)
Resolution was to move the ECC tests after the newly added server large packet
ones.
2018-10-15 11:26:17 +02:00
Janos Follath
e0e7ddf99e
Changelog: Add entry for prime validation fix
2018-10-09 16:36:53 +01:00
Janos Follath
3332937538
Changelog: Add entry for prime test improvement
2018-10-09 16:33:27 +01:00
Hanno Becker
abe6003f5a
Adapt ChangeLog
2018-10-09 12:44:47 +01:00
Hanno Becker
dc71ef8fcc
Adapt ChangeLog
2018-10-08 13:51:38 +01:00
Simon Butcher
5199227d87
Add Changelog entry for #767
...
Add Changelog entry for fix for alternative header/footers in CSR's.
2018-10-06 17:19:31 +01:00
Gilles Peskine
c5ccd7a1e7
Indicate the memory access variations in the changelog entry
2018-10-05 15:42:52 +02:00
Hanno Becker
617a321ed9
Adapt ChangeLog
2018-10-05 09:52:59 +01:00
Gilles Peskine
ddffa06501
Add ChangeLog entry
2018-10-03 13:40:16 +02:00
Simon Butcher
404aa65813
Add ChangeLog entry for Windows threading fix
2018-10-01 14:44:22 +01:00
Simon Butcher
df0500d7bc
Add Changelog entry for #482
...
Add Changelog entry for inline assembly/literal strings too long issue with
Clang.
2018-09-30 12:37:27 +01:00
Jaeden Amero
3725bb2d6d
rsa: pss: Enable use of big hashes with small keys
...
It should be valid to RSASSA-PSS sign a SHA-512 hash with a 1024-bit or
1032-bit RSA key, but with the salt size being always equal to the hash
size, this isn't possible: the key is too small.
To enable use of hashes that are relatively large compared to the key
size, allow reducing the salt size to no less than the hash size minus 2
bytes. We don't allow salt sizes smaller than the hash size minus 2
bytes because that too significantly changes the security guarantees the
library provides compared to the previous implementation which always
used a salt size equal to the hash size. The new calculated salt size
remains compliant with FIPS 186-4.
We also need to update the "hash too large" test, since we now reduce
the salt size when certain key sizes are used. We used to not support
1024-bit keys with SHA-512, but now we support this by reducing the salt
size to 62. Update the "hash too large" test to use a 1016-bit RSA key
with SHA-512, which still has too large of a hash because we will not
reduce the salt size further than 2 bytes shorter than the hash size.
The RSA private key used for the test was generated using "openssl
genrsa 1016" using OpenSSL 1.1.1-pre8.
$ openssl genrsa 1016
Generating RSA private key, 1016 bit long modulus (2 primes)
..............++++++
....++++++
e is 65537 (0x010001)
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
2018-09-27 18:23:08 +01:00