openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Merge compressed coordinate setting back into ecp_smpl and ec_lib	tb	2024-11-02	1	-112/+0
\| \| \| \|	The reason these were in separate files was FIPS. Not our problem.
*	Move public point <-> octets API to a new ec_convert.c	tb	2024-10-30	1	-130/+1
\| \| \| \|	discussed with jsing
*	Provide ec_point_from_octets()	tb	2024-10-30	1	-1/+31
\| \| \| \| \| \| \| \| \|	This is a wrapper that is the reverse of ec_point_to_octets(). It is a bit simpler since EC_POINT_oct2point() expects the point to be allocated already. It also hands back the correctly parsed point conversion form so that we don't have to do this by hand in a few places. ok jsing
*	Add a convenience wrapper for EC_POINT_point2oct()	tb	2024-10-30	1	-1/+41
\| \| \| \| \| \| \| \| \|	EC_POING_point2oct() is annoying to use since its invocation involves two calls: one to determine the space to allocate and one to pass the buffer and perform the actual conversion. Wrap this dance in a helper with the correct signature. ok jsing
*	Hide deprecated functions in ec.h	beck	2024-04-10	1	-1/+2
\| \| \| \| \| \|	use LCRYPTO_UNUSED and remove the LIBRESSL_INTERNAL guard ok tb@
*	Unbreak the namespace build after a broken mk.conf and tool misfire had	beck	2023-07-07	1	-2/+1
\| \| \| \| \| \| \| \|	me aliasing symbols not in the headers I was procesing. This unbreaks the namespace build so it will pass again ok tb@
*	Hide symbols in hkdf, evp, err, ecdsa, and ec	beck	2023-07-07	1	-1/+5
\| \| \| \| \| \|	(part 2 of commit) ok jsing@
*	Use size_t instead of int in EC_POINT_point2oct()	tb	2023-05-04	1	-2/+2
\| \| \| \| \| \| \|	An int would be perfectly sufficient for this, but then again there would be fewer traps. ok jsing
*	stray whitespace	tb	2023-05-01	1	-2/+2
\|
*	GF2m bites the dust. It won't be missed.	tb	2023-04-25	1	-10/+1
\|
*	Handle BN_CTX at the EC API boundary.	jsing	2023-04-11	1	-14/+56
\| \| \| \| \| \| \| \| \| \| \|	The EC API allows callers to optionally pass in a BN_CTX, which means that any code needing a BN_CTX has to check if one was provided, allocate one if not, then free it again. Rather than doing this dance throughout the EC code, handle the BN_CTX existance at the EC API boundary. This means that lower level implementation code can simply assume that the BN_CTX is available. ok tb@
*	Remove EC_FLAGS_DEFAULT_OCT.	jsing	2023-03-08	1	-60/+6
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	The EC code has an amazing array of function pointer hooks, such that a method can hook into almost any operation... and then there is the EC_FLAGS_DEFAULT_OCT flag, which adds a bunch of complex code and #ifdef so you can avoid setting three of those function pointers! Remove EC_FLAGS_DEFAULT_OCT, the now unused flags field from EC_METHOD, along with the various code that was wrapped in EC_FLAGS_DEFAULT_OCT, setting the three function pointers that need to be set in each of the EC_METHODs. ok beck@ tb@
*	Make internal header file names consistent	tb	2022-11-26	1	-2/+2
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Libcrypto currently has a mess of _lcl.h, _locl.h, and _local.h names used for internal headers. Move all these headers we inherited from OpenSSL to _local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook
*	Compare pointer against NULL and fix a KNF issue.	tb	2021-04-20	1	-3/+3
\| \| \| \|	ok jsing
*	Prepare to provide EC_POINT_set_compressed_coordinates	tb	2021-04-20	1	-35/+17
\| \| \| \|	ok jsing
*	Move point-on-curve check to set_affine_coordinates	tb	2020-12-04	1	-3/+17
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Bad API design makes it possible to set an EC_KEY public key to a point not on the curve. As a consequence, it was possible to have bogus ECDSA signatures validated. In practice, all software uses either EC_POINT_oct2point() to unmarshal public keys or issues a call to EC_KEY_check_key() after setting it. This way, a point on curve check is performed and the problem is mitigated. In OpenSSL commit 1e2012b7ff4a5f12273446b281775faa5c8a1858, Emilia Kasper moved the point-on-curve check from EC_POINT_oct2point to EC_POINT_set_affine_coordinates_, which results in more checking. In addition to this commit, we also check in the currently unused codepath of a user set callback for setting compressed coordinates, just in case this will be used at some point in the future. The documentation of EC_KEY_check_key() is very vague on what it checks and when checks are needed. It could certainly be improved a lot. It's also strange that EC_KEY_set_key() performs no checks, while EC_KEY_set_public_key_affine_coordinates() implicitly calls EC_KEY_check_key(). It's a mess. Issue found and reported by Guido Vranken who also tested an earlier version of this fix. ok jsing
*	Send the function codes from the error functions to the bit bucket,	beck	2017-01-29	1	-12/+12
\| \| \| \| \| \|	as was done earlier in libssl. Thanks inoguchi@ for noticing libssl had more reacharounds into this. ok jsing@ inoguchi@
*	Explicitly include <openssl/opensslconf.h> in every file that references	jsing	2014-07-10	1	-1/+3
\| \| \| \| \| \| \| \| \|	an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is never going to do anything, since OPENSSL_NO_XYZ will never defined, due to the fact that opensslconf.h has not been included. This also includes some miscellaneous sorting/tidying of headers.
*	tags as requested by miod and tedu	deraadt	2014-06-12	1	-1/+1
\|
*	knf approximation	tedu	2014-05-06	1	-71/+62
\|
*	import OpenSSL-1.0.1c	djm	2012-10-13	1	-0/+199