[gnutls-devel] GnuTLS | Verification of deterministic RSA-PSS signature fails (#953)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Mar 13 11:20:56 CET 2020



Anderson Sasaki created an issue: https://gitlab.com/gnutls/gnutls/-/issues/953



## Description of problem:
gnutls fails to verify signatures generated using ``GNUTLS_SIGN_RSA_PSS_RSAE_SHA256`` algorithm and passing the ``GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE`` flag.

## Version of gnutls used:
Current master (6df0dab742b4ee5bd3fa55680657326305bde8cc)

## Distributor of gnutls (e.g., Ubuntu, Fedora, RHEL)
n/a

## How reproducible:
100%

Steps to Reproduce:

Compile and run the following reproducer code:
[reproducer.c](/uploads/ea67aad60c0804ea7da6bf999c145851/reproducer.c)

## Actual results:
The reproducer outputs:

Verification failed!

## Expected results:
The reproducer outputs:

Verification succeeded!

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/953
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200313/be4d0cd3/attachment.html>


More information about the Gnutls-devel mailing list