(v7.x backport) crypto: add sign/verify support for RSASSA-PSS (!13436) · Merge requests · Rodrigo Test / Test Group-nodejs / node

Rodrigo Muino Tomonari requested to merge github/fork/tniessen/backport-11705-to-v7.x into v7.x-staging Jun 03, 2017

Original commit message:

Adds support for the PSS padding scheme. Until now, the sign/verify functions used the old EVP_Sign*/EVP_Verify* OpenSSL API, making it impossible to change the padding scheme. Fixed by first computing the message digest and then signing/verifying with a custom EVP_PKEY_CTX, allowing us to specify options such as the padding scheme and the PSS salt length.

Fixes: https://github.com/nodejs/node/issues/1127 PR-URL: https://github.com/nodejs/node/pull/11705 Reviewed-By: Shigeki Ohtsu ohtsu@ohtsu.org Reviewed-By: Sam Roberts vieuxtech@gmail.com Reviewed-By: Ben Noordhuis info@bnoordhuis.nl Reviewed-By: Anna Henningsen anna@addaleax.net

Checklist

make -j4 test (UNIX), or vcbuild test (Windows) passes
tests and/or benchmarks are included
documentation is changed or added
commit message follows commit guidelines

Affected core subsystem(s)

crypto

Admin message

Admin message

(v7.x backport) crypto: add sign/verify support for RSASSA-PSS

Checklist

Affected core subsystem(s)

Merge request reports