openbsd/src/lib/libcrypto/bn, branch libressl-v3.7.0 A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=libressl-v3.7.0 2022-12-01T21:59:54+00:00 Update reference to table generation 2022-12-01T21:59:54+00:00 tb 2022-12-01T21:59:54+00:00 urn:sha1:45aa98b071b22b4a4d3899a8a1af3109d41fa30b BN_one() can fail, check its return value. 2022-12-01T02:58:31+00:00 jsing 2022-12-01T02:58:31+00:00 urn:sha1:6ac34623f0ed759cefdd3f7c8b1a22780121b3f5 ok tb@ Rewrite bn_correct_top(). 2022-11-30T03:08:39+00:00 jsing 2022-11-30T03:08:39+00:00 urn:sha1:8b339315b9b1479ac79a4ca2c9d8d7030d7d6bf4 bn_correct_top() is currently a macro and far more complex than it needs to be - rewrite it as a function. ok tb@ Fix return values bug in BN_ucmp(). 2022-11-30T02:52:25+00:00 jsing 2022-11-30T02:52:25+00:00 urn:sha1:75e4367c588b97f1dcf3b7acd009e84c3797770d BN_ucmp() is supposed to return -1/0/1 on a < b, a == b and a > b, however it currently returns other negative and positive values when the top of a and b differ. Correct this. ok tb@ Mop up more BN_DEBUG related code. 2022-11-30T01:47:19+00:00 jsing 2022-11-30T01:47:19+00:00 urn:sha1:79a54ac1fe756018ef33b305a0e8ad1c79b63c3b Make header guards of internal headers consistent 2022-11-26T17:23:18+00:00 tb 2022-11-26T17:23:18+00:00 urn:sha1:3a1908508efa61f3f77ac8036694af2f920df947 Not all of them, only those that didn't leak into a public header... Yes. bn_lcl.h wanted special treatment. 2022-11-26T16:11:36+00:00 tb 2022-11-26T16:11:36+00:00 urn:sha1:8bb7cb3ff1df35d93a1b5e0fc0d4bfdb91221439 Make internal header file names consistent 2022-11-26T16:08:57+00:00 tb 2022-11-26T16:08:57+00:00 urn:sha1:81d98bf600a381a625eb11b39a725b08c0ba547f Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names used for internal headers. Move all these headers we inherited from OpenSSL to *_local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook Remove BIGNUM consistency macros. 2022-11-26T13:56:33+00:00 jsing 2022-11-26T13:56:33+00:00 urn:sha1:9171ca1447e11e58ff2d00ba6d28293a138ae41a Compiling with BN_DEBUG (and if you want to take it further, BN_DEBUG_RAND) supposedly adds consistency checks to the BN code. These are rarely if ever used and introduce a bunch of clutter in the code. Furthermore, there are hacks in place to undo things that the debugging code does. Remove all of this mess and instead rely on always enabled checks, more readable code and proper regress coverage to ensure correct behaviour. "Good riddance." tb@ Change bn_expand()/bn_wexpand() to indicate failure/success via 0/1. 2022-11-24T01:30:01+00:00 jsing 2022-11-24T01:30:01+00:00 urn:sha1:fb8d4760ac6775963983a2690ca829edbf8324c4 Currently bn_expand()/bn_wexpand() return a BIGNUM *, however none of the callers use this (and many already treat it as a true/false value). Change these functions to return 0 on failure and 1 on success, revising callers that test against NULL in the process. ok tb@