openbsd/src/lib/libcrypto/bn, branch OPENBSD_6_1_BASE A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_6_1_BASE 2017-01-29T17:49:23+00:00 Send the function codes from the error functions to the bit bucket, 2017-01-29T17:49:23+00:00 beck 2017-01-29T17:49:23+00:00 urn:sha1:d1f47bd292f36094480caa49ada36b99a69c59b0 as was done earlier in libssl. Thanks inoguchi@ for noticing libssl had more reacharounds into this. ok jsing@ inoguchi@ Construct a BN_gcd_nonct, based on BN_mod_inverse_no_branch, as suggested 2017-01-25T06:15:44+00:00 beck 2017-01-25T06:15:44+00:00 urn:sha1:f741256ec38e0e3f1664f26f154e27323aa56472 by Alejandro Cabrera <aldaya@gmail.com> to avoid the possibility of a sidechannel timing attack during RSA private key generation. Modify BN_gcd to become not visible under LIBRESSL_INTERNAL and force the use of the _ct or _nonct versions of the function only within the library. ok jsing@ use BN_div_nonct where it is safe to do so. 2017-01-21T23:02:53+00:00 beck 2017-01-21T23:02:53+00:00 urn:sha1:9936e217a29ea9f6450025fa200ac9b8088071b0 ok guenther@ Add ct and nonct versions of BN_mod_inverse for internal use 2017-01-21T11:00:47+00:00 beck 2017-01-21T11:00:47+00:00 urn:sha1:48df727a3547375dae8622c34fb55bdf5ef2c44c ok jsing@ Split out BN_div and BN_mod into ct and nonct versions for Internal use. 2017-01-21T10:38:29+00:00 beck 2017-01-21T10:38:29+00:00 urn:sha1:55a172a1ed5b0cd8f7de3628fcc2e56df6716d59 ok jsing@ Make explicit _ct and _nonct versions of bn_mod_exp funcitons that 2017-01-21T09:38:59+00:00 beck 2017-01-21T09:38:59+00:00 urn:sha1:a0a595cda97de2b217b0582cfa601ee4c746bfce matter for constant time, and make the public interface only used external to the library. This moves us to a model where the important things are constant time versions unless you ask for them not to be, rather than the opposite. I'll continue with this method by method. Add regress tests for same. ok jsing@ /usr/bin/unifdef -D MONT_MUL_MOD -D MONT_EXP_WORD -D RECP_MUL_MOD -m bn_exp.c 2017-01-21T04:34:16+00:00 beck 2017-01-21T04:34:16+00:00 urn:sha1:31dfbaab5a16857bb52fb54f901acd28b7fd7906 with some style cleanup after. no binary change ok jsing@ Remove superfluous datatype that is 32 by default. Clang complains 2017-01-04T16:52:26+00:00 patrick 2017-01-04T16:52:26+00:00 urn:sha1:02c91f86be763af7bbb6213b03780bfda07eb6cb about it and it's ok to remove it. This only came up as our clang is targeted at armv7 which enables the NEON instructions. ok kettenis@ Explicitly export a list of symbols from libcrypto. 2016-12-21T15:49:29+00:00 jsing 2016-12-21T15:49:29+00:00 urn:sha1:18adabd97858ed28289c9dc31e8042c515840be4 Move the "internal" BN functions from bn.h to bn_lcl.h and stop exporting the bn_* symbols. These are documented as only being intended for internal use, so why they were placed in a public header is beyond me... This hides 363 previously exported symbols, most of which exist in headers that are not installed and were never intended to be public. This also removes a few crusty old things that should have died long ago (like _ossl_old_des_read_pw). But don't worry... there are still 3451 symbols exported from the library. With input and testing from inoguchi@. ok beck@ inoguchi@ Reduce the ternary operator abuse 2016-11-08T01:40:22+00:00 guenther 2016-11-08T01:40:22+00:00 urn:sha1:1f38dda93111b1ec56d5ed138f7f20ba529857d6 ok miod@