unsigned int seed_size;
uint8_t seed[MAX_PVP_SEED_SIZE];
gnutls_digest_algorithm_t palgo;
- gnutls_x509_spki_st sign;
+ /* public key information */
+ gnutls_x509_spki_st spki;
gnutls_pk_algorithm_t algo;
} gnutls_pk_params_st;
ddata.data = (void*)gen_data;
ddata.size = hash_len;
} else if (algo == GNUTLS_PK_RSA_PSS) {
- switch (params->sign.rsa_pss_dig) {
+ switch (params->spki.rsa_pss_dig) {
case GNUTLS_DIG_SHA256:
ddata.data = (void*)const_data_sha256;
ddata.size = sizeof(const_data_sha256);
case GNUTLS_PK_EDDSA_ED25519:
case GNUTLS_PK_DSA:
case GNUTLS_PK_RSA_PSS:
- ret = _gnutls_pk_sign(algo, &sig, &ddata, params, ¶ms->sign);
+ ret = _gnutls_pk_sign(algo, &sig, &ddata, params, ¶ms->spki);
if (ret < 0) {
ret = gnutls_assert_val(GNUTLS_E_PK_GENERATION_ERROR);
goto cleanup;
}
- ret = _gnutls_pk_verify(algo, &ddata, &sig, params, ¶ms->sign);
+ ret = _gnutls_pk_verify(algo, &ddata, &sig, params, ¶ms->spki);
if (ret < 0) {
ret = gnutls_assert_val(GNUTLS_E_PK_GENERATION_ERROR);
gnutls_assert();
}
dst->palgo = src->palgo;
- memcpy(&dst->sign, &src->sign, sizeof(gnutls_x509_spki_st));
+ memcpy(&dst->spki, &src->spki, sizeof(gnutls_x509_spki_st));
return 0;
pub->algo = priv->algo;
pub->flags = priv->flags;
- memcpy(&pub->sign, &priv->sign, sizeof(gnutls_x509_spki_st));
+ memcpy(&pub->spki, &priv->spki, sizeof(gnutls_x509_spki_st));
switch (pk) {
case GNUTLS_PK_RSA_PSS:
if (flags & OLD_PUBKEY_VERIFY_FLAG_TLS1_RSA || flags & GNUTLS_VERIFY_USE_TLS1_RSA)
return gnutls_assert_val(GNUTLS_E_INVALID_REQUEST);
- memcpy(¶ms, &pubkey->params.sign, sizeof(gnutls_x509_spki_st));
+ memcpy(¶ms, &pubkey->params.spki, sizeof(gnutls_x509_spki_st));
se = _gnutls_sign_to_entry(algo);
if (se == NULL)
return gnutls_assert_val(GNUTLS_E_INVALID_REQUEST);
}
- memcpy(¶ms, &key->params.sign, sizeof(gnutls_x509_spki_st));
+ memcpy(¶ms, &key->params.spki, sizeof(gnutls_x509_spki_st));
if (flags & OLD_PUBKEY_VERIFY_FLAG_TLS1_RSA || flags & GNUTLS_VERIFY_USE_TLS1_RSA) {
if (!GNUTLS_PK_IS_RSA(key->pk_algorithm))
case GNUTLS_PK_EDDSA_ED25519:
return 0;
case GNUTLS_PK_RSA_PSS:
- return _gnutls_x509_read_rsa_pss_params(der, dersize, ¶ms->sign);
+ return _gnutls_x509_read_rsa_pss_params(der, dersize, ¶ms->spki);
case GNUTLS_PK_DSA:
return _gnutls_x509_read_dsa_params(der, dersize, params);
case GNUTLS_PK_EC:
switch (algo) {
case GNUTLS_PK_RSA_PSS: {
unsigned bits = pubkey_to_bits(algo, params);
- const mac_entry_st *me = hash_to_entry(params->sign.rsa_pss_dig);
+ const mac_entry_st *me = hash_to_entry(params->spki.rsa_pss_dig);
size_t hash_size;
if (unlikely(me == NULL))
return gnutls_assert_val(GNUTLS_E_CERTIFICATE_ERROR);
hash_size = _gnutls_hash_get_algo_len(me);
- if (hash_size + params->sign.salt_size + 2 > (bits + 7) / 8)
+ if (hash_size + params->spki.salt_size + 2 > (bits + 7) / 8)
return gnutls_assert_val(GNUTLS_E_CERTIFICATE_ERROR);
return 0;
}
der->size = ASN1_NULL_SIZE;
return 0;
case GNUTLS_PK_RSA_PSS:
- return _gnutls_x509_write_rsa_pss_params(¶ms->sign, der);
+ return _gnutls_x509_write_rsa_pss_params(¶ms->spki, der);
case GNUTLS_PK_ECDSA:
return _gnutls_x509_write_ecc_params(params->flags, der);
case GNUTLS_PK_EDDSA_ED25519:
}
if (spki) {
- memcpy(spki, &key->params.sign, sizeof (gnutls_x509_spki_st));
+ memcpy(spki, &key->params.spki, sizeof (gnutls_x509_spki_st));
}
if (bits) {
if (algo == GNUTLS_PK_RSA_PSS) {
const mac_entry_st *me;
- key->params.sign.pk = GNUTLS_PK_RSA_PSS;
+ key->params.spki.pk = GNUTLS_PK_RSA_PSS;
if (key->params.palgo != GNUTLS_DIG_UNKNOWN)
- key->params.sign.rsa_pss_dig = key->params.palgo;
+ key->params.spki.rsa_pss_dig = key->params.palgo;
else
- key->params.sign.rsa_pss_dig = GNUTLS_DIG_SHA256;
+ key->params.spki.rsa_pss_dig = GNUTLS_DIG_SHA256;
- me = hash_to_entry(key->params.sign.rsa_pss_dig);
+ me = hash_to_entry(key->params.spki.rsa_pss_dig);
if (unlikely(me == NULL)) {
gnutls_assert();
ret = GNUTLS_E_INVALID_REQUEST;
}
if (flags & GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE)
- key->params.sign.salt_size = 0;
+ key->params.spki.salt_size = 0;
else {
- key->params.sign.salt_size =
+ key->params.spki.salt_size =
_gnutls_find_rsa_pss_salt_size(bits, me, 0);
}
}
result =
_gnutls_pk_sign(key->pk_algorithm, signature, hash,
- &key->params, &key->params.sign);
+ &key->params, &key->params.spki);
if (result < 0) {
gnutls_assert();
_gnutls_x509_privkey_get_spki_params(gnutls_x509_privkey_t key,
gnutls_x509_spki_st *params)
{
- memcpy(params, &key->params.sign, sizeof(gnutls_x509_spki_st));
+ memcpy(params, &key->params.spki, sizeof(gnutls_x509_spki_st));
params->pk = key->pk_algorithm;
return 0;
}
goto error;
}
- memcpy(&pkey->params.sign, ¶ms, sizeof(gnutls_x509_spki_st));
+ memcpy(&pkey->params.spki, ¶ms, sizeof(gnutls_x509_spki_st));
ret = 0;
goto cleanup;
}
} else {
- memcpy(&sign_params, ¶ms.sign,
+ memcpy(&sign_params, ¶ms.spki,
sizeof(gnutls_x509_spki_st));
sign_params.pk = se->pk;
projects / thirdparty / gnutls.git / commitdiff
