提交 · 73e45b2dd127b10d6259203082fe2b49aa268986 · OpenHarmony / Third Party Openssl

08 12月, 2014 3 次提交

D
remove OPENSSL_FIPSAPI · 73e45b2d
由 Dr. Stephen Henson 提交于 10月 20, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
73e45b2d
D
remove FIPS module code from crypto/ecdsa · dbfbe10a
由 Dr. Stephen Henson 提交于 10月 19, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
dbfbe10a

Remove OPENSSL_FIPSCANISTER code. · c603c723

由 Dr. Stephen Henson 提交于 10月 18, 2014

OPENSSL_FIPSCANISTER is only set if the fips module is being built
(as opposed to being used). Since the fips module wont be built in
master this is redundant.
Reviewed-by: NTim Hudson <tjh@openssl.org>

c603c723

12 9月, 2014 1 次提交
- A
  Reserve option to use BN_mod_exp_mont_consttime in ECDSA. · f54be179
  由 Andy Polyakov 提交于 9月 12, 2014
```
Submitted by Shay Gueron, Intel Corp.
RT: 3149
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  f54be179
18 7月, 2013 1 次提交
- D
  Avoid need to change function code. · 8d6a75dc
  由 Dr. Stephen Henson 提交于 7月 17, 2013
```
Keep original function names for nonce versions so we don't have to change
error function codes.
```
  8d6a75dc
15 7月, 2013 1 次提交

Make `safe' (EC)DSA nonces the default. · 190c615d

由 Adam Langley 提交于 7月 15, 2013

This change updates 8a99cb29 to make the generation of (EC)DSA nonces
using the message digest the default. It also reverts the changes to
(EC)DSA_METHOD structure.

In addition to making it the default, removing the flag from EC_KEY
means that FIPS modules will no longer have an ABI mismatch.

190c615d

14 6月, 2013 1 次提交

Add secure DSA nonce flag. · 8a99cb29

由 Adam Langley 提交于 1月 24, 2013

This change adds the option to calculate (EC)DSA nonces by hashing the
message and private key along with entropy to avoid leaking the private
key if the PRNG fails.

8a99cb29

23 10月, 2011 1 次提交
- D
  
  Check for selftest failure in various places. · 5fd72260
  由 Dr. Stephen Henson 提交于 10月 22, 2011
  
  5fd72260
01 9月, 2011 1 次提交
- D
  
  make timing attack protection unconditional · ff723104
  由 Dr. Stephen Henson 提交于 9月 01, 2011
  
  ff723104
08 6月, 2011 1 次提交
- D
  
  Set flags in ECDH and ECDSA methods for FIPS. · 6b6abd62
  由 Dr. Stephen Henson 提交于 6月 08, 2011
  
  6b6abd62
25 5月, 2011 1 次提交

Fix the ECDSA timing attack mentioned in the paper at: · 992bdde6

由 Dr. Stephen Henson 提交于 5月 25, 2011

	http://eprint.iacr.org/2011/232.pdf

Thanks to the original authors Billy Bob Brumley and Nicola Tuveri for
bringing this to our attention.

992bdde6

24 4月, 2011 1 次提交
- D
  
  Add PRNG security strength checking. · cac4fb58
  由 Dr. Stephen Henson 提交于 4月 23, 2011
  
  cac4fb58
15 2月, 2011 1 次提交
- D
  Add ECDSA functionality to fips module. Initial very incomplete version · fe26d066
  由 Dr. Stephen Henson 提交于 2月 14, 2011
```
of algorithm test program.
```
  fe26d066
13 2月, 2011 1 次提交
- D
  
  New option to disable characteristic two fields in EC code. · b3310161
  由 Dr. Stephen Henson 提交于 2月 12, 2011
  
  b3310161
02 12月, 2009 1 次提交

PR: 1432 · 606c46fb

由 Dr. Stephen Henson 提交于 12月 01, 2009

Submitted by: "Andrzej Chmielowiec" <achmielowiec@enigma.com.pl>, steve@openssl.org
Approved by: steve@openssl.org

Truncate hash if it is too large: as required by FIPS 186-3.

606c46fb

19 11月, 2007 1 次提交
- B
  Should reject signatures that we can't properly verify · 4726fcfc
  由 Bodo Möller 提交于 11月 19, 2007
```
and couldn't generate
(as pointed out by Ernst G Giessmann)
```
  4726fcfc
16 11月, 2007 1 次提交
- B
  The hash length check wasn't strict enough, · da989402
  由 Bodo Möller 提交于 11月 16, 2007
```
as pointed out by Ernst G Giessmann
```
  da989402
05 10月, 2006 1 次提交
- N
  
  return an error if the supplied precomputed values lead to an invalid signature · 2fc281d0
  由 Nils Larsch 提交于 10月 04, 2006
  
  2fc281d0
16 5月, 2005 1 次提交

ecc api cleanup; summary: · 9dd84053

由 Nils Larsch 提交于 5月 16, 2005

- hide the EC_KEY structure definition in ec_lcl.c + add
  some functions to use/access the EC_KEY fields
- change the way how method specific data (ecdsa/ecdh) is
  attached to a EC_KEY
- add ECDSA_sign_ex and ECDSA_do_sign_ex functions with
  additional parameters for pre-computed values
- rebuild libeay.num from 0.9.7

9dd84053

29 4月, 2005 1 次提交
- N
  hide the definition of ECDSA_METHOD and ECDSA_DATA (and mutatis mutandis · 6a50d0a4
  由 Nils Larsch 提交于 4月 29, 2005
```
for ecdh)
```
  6a50d0a4
27 4月, 2005 1 次提交
- B
  Fix various incorrect error function codes. · aa4ce731
  由 Bodo Möller 提交于 4月 26, 2005
```
("perl util/ck_errf.pl */*.c */*/*.c" still reports many more.)
```
  aa4ce731
23 4月, 2005 2 次提交
- N
  
  more const · a0bee97e
  由 Nils Larsch 提交于 4月 22, 2005
  
  a0bee97e
- N
  - use BN_set_negative and BN_is_negative instead of BN_set_sign · ff22e913
  由 Nils Larsch 提交于 4月 22, 2005
```
  and BN_get_sign
- implement BN_set_negative as a function
- always use "#define BN_is_zero(a) ((a)->top == 0)"
```
  ff22e913
18 5月, 2004 1 次提交

Deprecate the recursive includes of bn.h from various API headers (asn1.h, · 0f814687

由 Geoff Thorpe 提交于 5月 17, 2004

dh.h, dsa.h, ec.h, ecdh.h, ecdsa.h, rsa.h), as the opaque bignum types are
already declared in ossl_typ.h. Add explicit includes for bn.h in those C
files that need access to structure internals or API functions+macros.

0f814687

23 2月, 2004 1 次提交
- G
  A cleanup of the ecs_ossl.c code and some (doxygen) comments for ecdsa.h · c6700d27
  由 Geoff Thorpe 提交于 2月 22, 2004
```
Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe
```
  c6700d27
15 1月, 2003 1 次提交
- L
  Fix initialization sequence to prevent freeing of unitialized objects. · a74333f9
  由 Lutz Jänicke 提交于 1月 15, 2003
```
Submitted by: Nils Larsch <nla@trustcenter.de>

PR: 459
```
  a74333f9
04 11月, 2002 1 次提交
- B
  implement and use new macros BN_get_sign(), BN_set_sign() · b53e44e5
  由 Bodo Möller 提交于 11月 04, 2002
```
Submitted by: Nils Larsch
```
  b53e44e5
07 8月, 2002 1 次提交
- B
  use a generic EC_KEY structure (EC keys are not ECDSA specific) · 14a7cfb3
  由 Bodo Möller 提交于 8月 07, 2002
```
Submitted by: Nils Larsch
```
  14a7cfb3
26 7月, 2002 1 次提交

Use SEC1 format for EC private keys. · 0bee0e62

由 Bodo Möller 提交于 7月 26, 2002

This is not ECDSA specific, so it's now PEM_STRING_ECPRIVATEKEY etc.

Submitted by: Nils Larsch <nlarsch@compuserve.de>

0bee0e62

10 6月, 2002 1 次提交
- B
  
  remove unnecessary calls to EC_POINT_copy() · 532203cd
  由 Bodo Möller 提交于 6月 10, 2002
  
  532203cd
20 2月, 2002 1 次提交
- B
  simplifications · 3613e6fc
  由 Bodo Möller 提交于 2月 20, 2002
```
Submitted by: Nils Larsch
```
  3613e6fc
14 2月, 2002 1 次提交
- B
  ECDSA support · 4d94ae00
  由 Bodo Möller 提交于 2月 13, 2002
```
Submitted by: Nils Larsch <nla@trustcenter.de>
```
  4d94ae00

OpenHarmony / Third Party Openssl 1 年多 前同步成功

OpenHarmony / Third Party Openssl
1 年多前同步成功