[gnutls-devel] GnuTLS | Verification of deterministic RSA-PSS signature fails (#953)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Mar 13 20:57:22 CET 2020




Nikos Mavrogiannopoulos commented:


To my understanding the RSA-PSS signature does not contain the salt size thus the salt size needs to be provided somehow. The verification functions will read the parameters from the certificate (see `fixup_spki_params()`) or assume some defaults. That's the case here, the verification function has no way to be told that this is a key with zero salt.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/953#note_304814097
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200313/4efbbe59/attachment.html>


More information about the Gnutls-devel mailing list