openbsd/src/lib/libcrypto/rsa, branch OPENBSD_6_1_BASE A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_6_1_BASE 2017-01-29T17:49:23+00:00 Send the function codes from the error functions to the bit bucket, 2017-01-29T17:49:23+00:00 beck 2017-01-29T17:49:23+00:00 urn:sha1:d1f47bd292f36094480caa49ada36b99a69c59b0 as was done earlier in libssl. Thanks inoguchi@ for noticing libssl had more reacharounds into this. ok jsing@ inoguchi@ Construct a BN_gcd_nonct, based on BN_mod_inverse_no_branch, as suggested 2017-01-25T06:15:44+00:00 beck 2017-01-25T06:15:44+00:00 urn:sha1:f741256ec38e0e3f1664f26f154e27323aa56472 by Alejandro Cabrera <aldaya@gmail.com> to avoid the possibility of a sidechannel timing attack during RSA private key generation. Modify BN_gcd to become not visible under LIBRESSL_INTERNAL and force the use of the _ct or _nonct versions of the function only within the library. ok jsing@ Add ct and nonct versions of BN_mod_inverse for internal use 2017-01-21T11:00:47+00:00 beck 2017-01-21T11:00:47+00:00 urn:sha1:48df727a3547375dae8622c34fb55bdf5ef2c44c ok jsing@ Split out BN_div and BN_mod into ct and nonct versions for Internal use. 2017-01-21T10:38:29+00:00 beck 2017-01-21T10:38:29+00:00 urn:sha1:55a172a1ed5b0cd8f7de3628fcc2e56df6716d59 ok jsing@ Make explicit _ct and _nonct versions of bn_mod_exp funcitons that 2017-01-21T09:38:59+00:00 beck 2017-01-21T09:38:59+00:00 urn:sha1:a0a595cda97de2b217b0582cfa601ee4c746bfce matter for constant time, and make the public interface only used external to the library. This moves us to a model where the important things are constant time versions unless you ask for them not to be, rather than the opposite. I'll continue with this method by method. Add regress tests for same. ok jsing@ Expand ASN1_ITEM_rptr macros - no change in generated assembly. 2016-12-30T15:47:07+00:00 jsing 2016-12-30T15:47:07+00:00 urn:sha1:19f5bc5369a8920072dcf66ff2aa6e1b7cc62b85 Explicitly export a list of symbols from libcrypto. 2016-12-21T15:49:29+00:00 jsing 2016-12-21T15:49:29+00:00 urn:sha1:18adabd97858ed28289c9dc31e8042c515840be4 Move the "internal" BN functions from bn.h to bn_lcl.h and stop exporting the bn_* symbols. These are documented as only being intended for internal use, so why they were placed in a public header is beyond me... This hides 363 previously exported symbols, most of which exist in headers that are not installed and were never intended to be public. This also removes a few crusty old things that should have died long ago (like _ossl_old_des_read_pw). But don't worry... there are still 3451 symbols exported from the library. With input and testing from inoguchi@. ok beck@ inoguchi@ unifdef OPENSSL_NO_CMS 2016-10-19T16:49:11+00:00 jsing 2016-10-19T16:49:11+00:00 urn:sha1:2a3b8c956b102b5686a0e8569612a0edb275f365 missing space after comma 2016-09-09T11:39:11+00:00 tb 2016-09-09T11:39:11+00:00 urn:sha1:22e95b7d03022ed099f6513dae3059f9c3d85af1 (this was apparently lost during the repo surgery) ok bcook Expand DECLARE_ASN1_.*FUNCTIONS macros. 2016-09-04T17:25:27+00:00 jsing 2016-09-04T17:25:27+00:00 urn:sha1:6b821b77472515bca3e910c34372cf3306e435dd No change in preprocessed output, ignoring whitespace and line numbers.