fips: Mark gcry_pk_encrypt/decrypt function non-approved.

* src/fips.c (_gcry_fips_indicator_function): Add gcry_pk_encrypt/decrypt as non-approved. -- Cherry-pick master commit of: 05cb8355d3e66f15425ad85ae2203882e80f4792 Signed-off-by: Jakub Jelen <jjelen@redhat.com>
author: Jakub Jelen <jjelen@redhat.com> 2022-10-05 16:50:08 +0200
committer: NIIBE Yutaka <gniibe@fsij.org> 2023-03-14 13:52:28 +0900
commit: 051bbe84d889b413f158c665e5cc25b26c820388 (patch)
tree: 07c0bd11657d7e5aa7f44ba9c1d29f883b9e6b7e
parent: 6805d76b7ed4886f00bf704c77b0549408097219 (diff)
download: libgcrypt-051bbe84d889b413f158c665e5cc25b26c820388.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/src/fips.c b/src/fips.c
index 5dc709dc..5bbf00a8 100644
--- a/src/fips.c
+++ b/src/fips.c
@@ -447,7 +447,9 @@ _gcry_fips_indicator_function (va_list arg_ptr)
   const char *function = va_arg (arg_ptr, const char *);
 
   if (strcmp (function, "gcry_pk_sign") == 0 ||
-      strcmp (function, "gcry_pk_verify") == 0)
+      strcmp (function, "gcry_pk_verify") == 0 ||
+      strcmp (function, "gcry_pk_encrypt") == 0 ||
+      strcmp (function, "gcry_pk_decrypt") == 0)
     return GPG_ERR_NOT_SUPPORTED;
 
   return GPG_ERR_NO_ERROR;
author	Jakub Jelen <jjelen@redhat.com>	2022-10-05 16:50:08 +0200
committer	NIIBE Yutaka <gniibe@fsij.org>	2023-03-14 13:52:28 +0900
commit	051bbe84d889b413f158c665e5cc25b26c820388 (patch)
tree	07c0bd11657d7e5aa7f44ba9c1d29f883b9e6b7e
parent	6805d76b7ed4886f00bf704c77b0549408097219 (diff)
download	libgcrypt-051bbe84d889b413f158c665e5cc25b26c820388.tar.gz