aboutsummaryrefslogtreecommitdiffstats
path: root/agent/pksign.c
diff options
context:
space:
mode:
Diffstat (limited to 'agent/pksign.c')
-rw-r--r--agent/pksign.c14
1 files changed, 13 insertions, 1 deletions
diff --git a/agent/pksign.c b/agent/pksign.c
index 0640b04ef..6d13278ff 100644
--- a/agent/pksign.c
+++ b/agent/pksign.c
@@ -497,6 +497,12 @@ agent_pksign_do (ctrl_t ctrl, const char *cache_nonce,
err = do_encode_dsa (data, datalen,
algo, s_skey,
&s_hash);
+ else if (ctrl->digest.is_pss)
+ {
+ log_info ("signing with rsaPSS is currently only supported"
+ " for (some) smartcards\n");
+ err = gpg_error (GPG_ERR_NOT_SUPPORTED);
+ }
else
err = do_encode_md (data, datalen,
ctrl->digest.algo,
@@ -540,7 +546,13 @@ agent_pksign_do (ctrl_t ctrl, const char *cache_nonce,
if (s_hash == NULL)
{
- if (ctrl->digest.algo == MD_USER_TLS_MD5SHA1)
+ if (ctrl->digest.is_pss)
+ {
+ err = gcry_sexp_build (&s_hash, NULL,
+ "(data (flags raw) (value %b))",
+ (int)datalen, data);
+ }
+ else if (ctrl->digest.algo == MD_USER_TLS_MD5SHA1)
err = do_encode_raw_pkcs1 (data, datalen,
gcry_pk_get_nbits (sexp_key), &s_hash);
else
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-27 06:59:17 +0000