diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-07-28 09:27:03 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-08-04 16:46:18 +0200 |
commit | 31cb0cac7d4f1d34a8c42d65817357ee24e4e0e8 (patch) | |
tree | 8aefefc7ec6e3fe66fdd4953304e7c6c9a7ce9bd /lib/pkcs11_privkey.c | |
parent | b05d57f6463e1f08c3fe14d4d2c1a556a68c0b47 (diff) | |
download | gnutls-31cb0cac7d4f1d34a8c42d65817357ee24e4e0e8.tar.gz |
prior to negotiating a signature check compatibility with private key
That is, check if the private key can support the public key operation
needed for the signature. That in particular includes, excluding the
Ed25519 and RSA-PSS from being used with the 'EXT' keys as the
current API cannot handle them, and RSA-PSS from being used by PKCS#11
RSA keys which do not provide the CKM_RSA_PKCS_PSS mechanism.
Relates #234
Resolves #209
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'lib/pkcs11_privkey.c')
-rw-r--r-- | lib/pkcs11_privkey.c | 16 |
1 files changed, 0 insertions, 16 deletions
diff --git a/lib/pkcs11_privkey.c b/lib/pkcs11_privkey.c index b6765fcec8..9e1d1de1fa 100644 --- a/lib/pkcs11_privkey.c +++ b/lib/pkcs11_privkey.c @@ -59,22 +59,6 @@ break; \ } while (1); -struct gnutls_pkcs11_privkey_st { - gnutls_pk_algorithm_t pk_algorithm; - unsigned int rsa_pss_ok; /* if it is an RSA key, it can do RSA-PSS */ - - unsigned int flags; - struct p11_kit_uri *uinfo; - char *url; - - struct pkcs11_session_info sinfo; - ck_object_handle_t ref; /* the key in the session */ - unsigned reauth; /* whether we need to login on each operation */ - - void *mutex; /* lock for operations requiring co-ordination */ - - struct pin_info_st pin; -}; /** * gnutls_pkcs11_privkey_init: |