agent: RSA signature verification by gpg-agent.
authorNIIBE Yutaka <gniibe@fsij.org>
Tue, 29 Sep 2015 00:49:44 +0000 (09:49 +0900)
committerNIIBE Yutaka <gniibe@fsij.org>
Tue, 29 Sep 2015 00:49:44 +0000 (09:49 +0900)
commitcfbe6ba9cf1414e9aa4977e2bbaecaa43154b2ae
tree9a23dd0ee6c45ed6d8046911d341ccabd92a578a
parentf1effdc5ecd0cc52a28db7ae28a5c28f33486542
agent: RSA signature verification by gpg-agent.

* g10/sign.c (do_sign): Let verify signature by gpg-agent.
* agent/pksign.c (agent_pksign_do): Call gcry_pk_verify for RSA.

--

RSA signature verification should be done to prevent attacks against
RSA CRT implementations and not to return invalid signature to
adversary.  Newer libgcrypt does so.  For older libgcrypt and
smartcards, gpg-agent does signature verification.
agent/pksign.c
g10/sign.c