nettle/pk: mark ML-DSA as FIPS-unapproved

* public key validation should ideally be performed within gnutls,
  not inside the back-end
* ML-DSA needs a self-test (FIPS 140-3 IG 10.3.A)

Signed-off-by: Alexander Sosedkin <asosedkin@redhat.com>

diff --git a/lib/nettle/pk.c b/lib/nettle/pk.c
index 73e356a603eb76d8e5233487adbbf2d9fcba414e..8e0758635b37e926a4b840338efb09daa0a61314 100644 (file)
--- a/lib/nettle/pk.c
+++ b/lib/nettle/pk.c
@@ -2179,6 +2179,7 @@ static int _wrap_nettle_pk_sign(gnutls_pk_algorithm_t algo,
        case GNUTLS_PK_MLDSA44:
        case GNUTLS_PK_MLDSA65:
        case GNUTLS_PK_MLDSA87:
+               not_approved = true;
                ret = ml_dsa_sign(algo, signature, vdata, &pk_params->raw_priv);
                if (ret < 0)
                        goto cleanup;
@@ -2552,6 +2553,7 @@ static int _wrap_nettle_pk_verify(gnutls_pk_algorithm_t algo,
        case GNUTLS_PK_MLDSA44:
        case GNUTLS_PK_MLDSA65:
        case GNUTLS_PK_MLDSA87:
+               not_approved = true;
                ret = ml_dsa_verify(algo, signature, vdata,
                                    &pk_params->raw_pub);
                if (ret < 0)