rsa: Add FIPS 186-4 compliant RSA probable prime key generator.

* cipher/primegen.c (_gcry_fips186_4_prime_check): New. * cipher/rsa.c (generate_fips): New. (rsa_generate): Use new function in fips mode or with test-parms. * tests/keygen.c (check_rsa_keys): Add test using e=65539. -- Signed-off-by: Tomáš Mráz <tmraz@redhat.com> Tomáš's patch war originally for libgcrypt 1.6.3 and has been ported to master (1.7) by wk. Further changes: - ChangeLog entries. - Some re-indentation - Use an extra test case instead of changing an existing one. Signed-off-by: Werner Koch <wk@gnupg.org>
author: Tomáš Mráz <tmraz@redhat.com> 2016-03-22 17:12:55 +0100
committer: Werner Koch <wk@gnupg.org> 2016-03-22 17:12:55 +0100
commit: 5f9b3c2e220ca6d0eaff32324a973ef67933a844 (patch)
tree: 3e90cb60586313c06d6a68030c74a5cd828896e3 /src/g10lib.h
parent: 583919d70763671ed9feeaa14e1f66379aff88cc (diff)
download: libgcrypt-5f9b3c2e220ca6d0eaff32324a973ef67933a844.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/src/g10lib.h b/src/g10lib.h
index 1070d9e9..170ffa16 100644
--- a/src/g10lib.h
+++ b/src/g10lib.h
@@ -263,6 +263,9 @@ gpg_err_code_t _gcry_generate_fips186_3_prime
                   int *r_counter,
                   void **r_seed, size_t *r_seedlen, int *r_hashalgo);
 
+gpg_err_code_t _gcry_fips186_4_prime_check (const gcry_mpi_t x,
+                                            unsigned int bits);
+
 
 /* Replacements of missing functions (missing-string.c).  */
 #ifndef HAVE_STPCPY
author	Tomáš Mráz <tmraz@redhat.com>	2016-03-22 17:12:55 +0100
committer	Werner Koch <wk@gnupg.org>	2016-03-22 17:12:55 +0100
commit	5f9b3c2e220ca6d0eaff32324a973ef67933a844 (patch)
tree	3e90cb60586313c06d6a68030c74a5cd828896e3 /src/g10lib.h
parent	583919d70763671ed9feeaa14e1f66379aff88cc (diff)
download	libgcrypt-5f9b3c2e220ca6d0eaff32324a973ef67933a844.tar.gz