openbsd/src/lib/libcrypto/Makefile, branch master

openbsd/src/lib/libcrypto/Makefile, branch master A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=master 2025-09-05T23:30:12+00:00 Deduplicate the mlkem 768 and mlkem 1024 code. 2025-09-05T23:30:12+00:00 beck 2025-09-05T23:30:12+00:00 urn:sha1:21ce890cad6ae67e0d52f7bfdc44579df2bfc032 This moves everything not public to mlkem_internal.c removing the old files and doing some further cleanup on the way. With this landed mlkem is out of my stack and can be changed without breaking my subsequent changes ok tb@ Move opensslconf.h to a machine-independent place 2025-08-25T16:48:02+00:00 tb 2025-08-25T16:48:02+00:00 urn:sha1:6cbc8c56cfb66d812e5b9f335973b11b213f5665 After drilling through many layers of fossilized turds from a long-forgotten millenium, jsing and I finally found oil^Wa machine-independent version of opensslconf.h. Remove the no longer needed versions in arch/*/ and move one copy to the top level. Add an RCS tag and place the remaining garbage in the public domain. ok jsing Add a reasonable ML-KEM API for public use. 2025-08-14T15:48:48+00:00 beck 2025-08-14T15:48:48+00:00 urn:sha1:6452fa9fc6f33dac80ee572764b9fe29a469f8ce Adapt the tests to use this API. This does not yet make the symbols public in Symbols.list which will happen shortly with a bump. This includes some partial rototilling of the non-public interfaces which will be shortly continued when the internal code is deduplicated to not have multiple copies for ML-KEM 768 and ML-KEM 1024 (which is just an artifact of unravelling the boring C++ code). ok jsing@, tb@ Ride the libcrypto bump with some simple cleanup: 2025-07-16T15:59:26+00:00 tb 2025-07-16T15:59:26+00:00 urn:sha1:c82a6c2e80c4901e67b15003b73d79f25ed56a6c Remove BIO_s_log(): already unhooked in portable, completely unused. Remove X509_PKEY_new/free from public API. Remove PEM_X509_INFO_read() PEM_X509_INFO_write_bio(): all unused garbage. The simplify X509_PKEY_new/free was ok kenjiro. Merge the two functions from x_pkey.c into pem_info.c 2025-07-12T20:22:40+00:00 tb 2025-07-12T20:22:40+00:00 urn:sha1:69147ea8445a511462c02e8ac88d4f75fec3fa1b It looks like those can be unexported. Merge the two functions from x_info.c into pem_info.c 2025-07-12T19:57:13+00:00 tb 2025-07-12T19:57:13+00:00 urn:sha1:d8116bd100cd9a4c1e502db89ddc6042bdb71643 X509_INFO_new() isn't used directly outside of this file, so this is a bit tidier. Simplify EVP AES-GCM implementation and remove AES-NI specific code. 2025-06-27T17:26:57+00:00 jsing 2025-06-27T17:26:57+00:00 urn:sha1:fd19eff2f98d72aee359ddccbf890bac0361fb66 Like CTR, the mode implementation for GCM has two variants - rather than using multiple variants (one for AES-NI, another for non-AES-NI), consistently use CRYPTO_gcm128_{en,de}crypt_ctr32() with the aes_ctr32_encrypt_internal() function added for CTR mode. This lets us remove the AES-NI specific code, AES-NI specific EVP_CIPHER methods and the ctr function pointer from EVP_AES_GCM_CTX. ok tb@ Merge AES-IGE into aes.c. 2025-05-25T06:27:02+00:00 jsing 2025-05-25T06:27:02+00:00 urn:sha1:769c7e849616a0f0f3423a25a2195cb36fd4885e Merge RC2 into a single file. 2025-05-25T05:29:54+00:00 jsing 2025-05-25T05:29:54+00:00 urn:sha1:6fb0a25b68fa3af8c9df5f81c884225d253042b8 Discussed with tb@ Provide an EC method that uses homogeneous projective coordinates. 2025-05-25T05:19:26+00:00 jsing 2025-05-25T05:19:26+00:00 urn:sha1:26512301343d2b40a68a67d4f4175ddec368d2fe This makes use of EC_FIELD_ELEMENT to perform fixed width constant time operations. Addition and doubling of points makes use of the formulas from "Complete addition formulas for prime order elliptic curves" (https://eprint.iacr.org/2015/1060). These are complete and operate in constant time. Further work will continue in tree. ok tb@