openbsd/src/lib/libcrypto/ec, branch OPENBSD_6_3

openbsd/src/lib/libcrypto/ec, branch OPENBSD_6_3_BASE A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_6_3_BASE 2018-03-16T12:31:09+00:00 Consistently spell "IPsec" in comments and debug outputs. 2018-03-16T12:31:09+00:00 mpi 2018-03-16T12:31:09+00:00 urn:sha1:fff8a131f135f1fbf7f3be0a83d4d66a79766454 From Raf Czlonka, ok sthen@ Fix for processing of EC public key 2018-03-12T13:14:21+00:00 inoguchi 2018-03-12T13:14:21+00:00 urn:sha1:b4ddb0f51fc8a6934ca72ca243bd2e1237e3db44 Prevents segmentation fault while reading EC private key without public key. Generates missing EC public key when reading EC private key. Refer to these OpenSSL commits: 1f2b943254ce590867717375e4f364860a9b7154 2083f7c465d07867dd9867b8742bb71c03d1f203 Reported on GitHub https://github.com/libressl-portable/portable/issues/395 by Anton Bukov (@k06a) . ok beck@ Avoid a potential NULL pointer dereference in d2i_ECPrivateKey(). 2017-05-26T16:32:14+00:00 jsing 2017-05-26T16:32:14+00:00 urn:sha1:4e14b65a83270a299f916c446d8d04a894ff7d7b Reported by Robert Swiecki, who found the issue using honggfuzz. ok bcook@ use freezero() instead of memset/explicit_bzero + free. Substantially 2017-05-02T03:59:45+00:00 deraadt 2017-05-02T03:59:45+00:00 urn:sha1:5904cc0e04409fde39a97e6580535da34eeb4291 reduces conditional logic (-218, +82). MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH cache alignment calculation bn/bn_exp.c wasn'tt quite right. Two other tricky bits with ASN1_STRING_FLAG_NDEF and BN_FLG_STATIC_DATA where the condition cannot be collapsed completely. Passes regress. ok beck Send the function codes from the error functions to the bit bucket, 2017-01-29T17:49:23+00:00 beck 2017-01-29T17:49:23+00:00 urn:sha1:d1f47bd292f36094480caa49ada36b99a69c59b0 as was done earlier in libssl. Thanks inoguchi@ for noticing libssl had more reacharounds into this. ok jsing@ inoguchi@ Add ct and nonct versions of BN_mod_inverse for internal use 2017-01-21T11:00:47+00:00 beck 2017-01-21T11:00:47+00:00 urn:sha1:48df727a3547375dae8622c34fb55bdf5ef2c44c ok jsing@ Explicitly export a list of symbols from libcrypto. 2016-12-21T15:49:29+00:00 jsing 2016-12-21T15:49:29+00:00 urn:sha1:18adabd97858ed28289c9dc31e8042c515840be4 Move the "internal" BN functions from bn.h to bn_lcl.h and stop exporting the bn_* symbols. These are documented as only being intended for internal use, so why they were placed in a public header is beyond me... This hides 363 previously exported symbols, most of which exist in headers that are not installed and were never intended to be public. This also removes a few crusty old things that should have died long ago (like _ossl_old_des_read_pw). But don't worry... there are still 3451 symbols exported from the library. With input and testing from inoguchi@. ok beck@ inoguchi@ Add assembler code for the nist 256-bit GFp curve, written initially by 2016-11-04T17:33:20+00:00 miod 2016-11-04T17:33:20+00:00 urn:sha1:c25bd6f14a47d7516c4d4e740952129f29e02a36 Intel. Obtained from BoringSSL, with some integration work borrowed from OpenSSL 1.0.2; assembler code for arm and sparc64 borrowed from OpenSSL 1.1.0. None of this code is enabled in libcrypto yet. ok beck@ jsing@ unifdef OPENSSL_NO_CMS 2016-10-19T16:49:11+00:00 jsing 2016-10-19T16:49:11+00:00 urn:sha1:2a3b8c956b102b5686a0e8569612a0edb275f365 remove unused variable 2016-09-03T12:10:40+00:00 beck 2016-09-03T12:10:40+00:00 urn:sha1:9cdc5c3485e3a4b0dcea390a07961c11306effc9