Cypher_Stack/libsecret
2
0
Fork 0
mirror of https://gitlab.gnome.org/GNOME/libsecret.git synced 2024-12-22 04:38:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
d72c757992
libsecret/egg
History
Daiki Ueno ac1367056d session: Tolerate non-approved DH parameter usage in FIPS mode 
The SecretSession protocol uses a weak Diffie-Hellman parameters which
are not approved by FIPS. While this is not ideal, the protocol is not
designed as a general protection mechanism of data in transit, but
just as a safety net against when the dbus-daemon (or dbus-broker)
crashes and dumps a core, and thus bumping the protocol to use a
larger DH group would be overkill.

This patch temporarily disables the FIPS check around the GnuTLS DH
API calls to avoid errors.

Signed-off-by: Daiki Ueno <dueno@src.gnome.org>
2024-07-23 06:00:10 +09:00
..
egg-buffer.c pam: port PAM module egg helper functions from gnome-keyring 2023-12-10 22:35:55 +05:30
egg-buffer.h pam: port PAM module egg helper functions from gnome-keyring 2023-12-10 22:35:55 +05:30
egg-dh-gnutls.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-dh-libgcrypt.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-dh.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-dh.h Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-fips-gnutls.c session: Tolerate non-approved DH parameter usage in FIPS mode 2024-07-23 06:00:10 +09:00
egg-fips-libgcrypt.c session: Tolerate non-approved DH parameter usage in FIPS mode 2024-07-23 06:00:10 +09:00
egg-fips.h session: Tolerate non-approved DH parameter usage in FIPS mode 2024-07-23 06:00:10 +09:00
egg-hex.c egg-hex: Bring over changes from gnome-keyring and gcr 2012-11-07 23:15:44 +01:00
egg-hex.h egg-hex: Bring over changes from gnome-keyring and gcr 2012-11-07 23:15:44 +01:00
egg-hkdf-gnutls.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-hkdf-libgcrypt.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-hkdf.h Fix license header issues 2012-03-31 15:33:25 +02:00
egg-keyring1-gnutls.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-keyring1-libgcrypt.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
egg-keyring1.h file-collection: Move low-level crypto functions to egg 2023-12-04 16:50:10 +09:00
egg-libgcrypt.c Drop "volatile" for g_once_init_enter locations 2021-06-12 13:23:00 +02:00
egg-libgcrypt.h Fix license header issues 2012-03-31 15:33:25 +02:00
egg-secure-memory.c egg: Request that secure memory not be dumped to disk 2019-06-02 14:46:54 +02:00
egg-secure-memory.h Add build support for Meson 2019-01-19 21:03:56 +00:00
egg-testing.c egg-testing: Sync with gnome-keyring 2019-10-13 06:21:37 +00:00
egg-testing.h egg-testing: Sync with gnome-keyring 2019-10-13 06:21:37 +00:00
egg-tpm2.c TPM2: fix g_memdup deprecated warning 2023-08-24 13:31:15 +00:00
egg-tpm2.h Add TPM2 API and its implementations to egg 2021-08-04 14:42:55 +05:30
egg-unix-credentials.c pam: port PAM module egg helper functions from gnome-keyring 2023-12-10 22:35:55 +05:30
egg-unix-credentials.h pam: port PAM module egg helper functions from gnome-keyring 2023-12-10 22:35:55 +05:30
meson.build session: Tolerate non-approved DH parameter usage in FIPS mode 2024-07-23 06:00:10 +09:00
test-dh.c Support GnuTLS as an alternative crypto backend 2023-12-04 16:50:49 +09:00
test-hex.c tests: undef G_DISABLE_ASSERT 2019-06-29 06:54:37 +02:00
test-hkdf.c tests: Remove unnecessary inclusion of <gcrypt.h> 2023-12-11 08:39:58 +09:00
test-secmem.c tests: undef G_DISABLE_ASSERT 2019-06-29 06:54:37 +02:00
test-tpm2.c TPM2: Fix primary key generation in decrypting 2021-08-12 20:24:40 +05:30