Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2022-12-02 | Implementation of the MGM mode for magma/kuznyechik | igrkir | 1 | -1/+1 | |
first implemented in ossl_patched branch uses dynamic NIDs Signed-off-by: Sergei Ianovich <sergei.ianovich@ya.ru> | |||||
2022-05-23 | On unpacking key blob output buffer size should be fixedv3.0.1 | Dmitry Belyavskiy | 1 | -9/+14 | |
Related: CVE-2022-29242 | |||||
2022-05-23 | Fix buffer overrun in creating key transport blob according to RFC 9189, 4.2.4.2 | Dmitry Belyavskiy | 1 | -1/+21 | |
Resolves: CVE-2022-29242 | |||||
2022-05-23 | Fix buffer overrun in creating key transport blob according to RFC 9189, 4.2.4.1 | Dmitry Belyavskiy | 1 | -1/+20 | |
Resolves: CVE-2022-29242 | |||||
2022-01-09 | gost_ec_keyx: Check CTX data before it's really used | Vitaly Chikunov | 1 | -4/+12 | |
This should fix Coverity warning: *** CID 345243: Null pointer dereferences (REVERSE_INULL) /gost_ec_keyx.c: 681 in pkey_gost2018_decrypt() 675 o Q_eph is on the same curve as server public key; 676 677 o Q_eph is not equal to zero point; 678 679 o q * Q_eph is not equal to zero point. 680 */ >>> CID 345243: Null pointer dereferences (REVERSE_INULL) >>> Null-checking "data" suggests that it may be null, but it has already been dereferenced on all paths leading to the check. 681 if (eph_key == NULL || priv == NULL || data == NULL) { 682 GOSTerr(GOST_F_PKEY_GOST2018_DECRYPT, 683 GOST_R_ERROR_COMPUTING_EXPORT_KEYS); 684 ret = 0; 685 goto err; 686 } Signed-off-by: Vitaly Chikunov <vt@altlinux.org> Issue: #380 | |||||
2021-08-11 | push VKO cofactor clearing into ECCKiila | Billy Brumley | 1 | -1/+7 | |
2021-04-02 | Update gost_ec_keyx.c | se-prok | 1 | -0/+7 | |
It's not right to have segmentation faults. | |||||
2020-11-28 | Add explicit support for NID_id_GostR3410_2001DH (GOST R 34.10-2001 DH) | Dmitry Timoshkov | 1 | -1/+1 | |
2020-07-09 | Allow to use raw VKO in EVP_PKEY_derive | Vitaly Chikunov | 1 | -2/+22 | |
Suitable for tests. Use EVP_PKEY_CTRL_SET_VKO ctrl with appropriate digest nid to enable VKO mode. | |||||
2020-07-03 | GOST ECC optimizations (#263) | Billy Brumley | 1 | -1/+1 | |
Standalone EC implementations from ECCKiila. https://gitlab.com/nisec/ecckiila | |||||
2020-06-10 | gost_ec_keyx: Update header plate with copyrights and description (#266) | Vitalio | 1 | -1/+7 | |
2020-06-08 | GOST key agreement cofactor fix (#265) | Billy Brumley | 1 | -30/+32 | |
* GOST key agreement cofactor fix | |||||
2020-05-18 | Fix code formating. | Nikolay Morozov | 1 | -20/+20 | |
All tabs replcaded with spaces. One file was 2 tabs fornating. | |||||
2020-05-10 | GOST CMS encryption implementation. | Dmitry Belyavskiy | 1 | -28/+37 | |
2020-05-04 | Fix coverity issue 300458 | Dmitry Belyavskiy | 1 | -4/+9 | |
2020-05-04 | UKM must be set | Dmitry Belyavskiy | 1 | -0/+13 | |
2020-05-04 | Updated decrypt selection logic | Dmitry Belyavskiy | 1 | -1/+16 | |
2020-02-29 | cppcheck: Variable is reassigned a value before the old one has been used. | Nikolay Morozov | 1 | -1/+0 | |
Plus some minor chnages - function defenition doen't match function declaration - Consecutive break statement is unnecessary. - Type missmatch in format string | |||||
2020-02-26 | keyx: Add OPENSSL_cleanse for internal buffers | Vitaly Chikunov | 1 | -0/+5 | |
Only stack buffers are considered. | |||||
2020-02-26 | ec: Use BN_{CTX_,}secure_new memory API for priv keys | Vitaly Chikunov | 1 | -2/+2 | |
OpenSSL suggests to use (and internally itself uses) `BN_{CTX_,}secure_new' primitives to work with private keys. These are using `OPENSSL_secure_malloc' et al. calls, which use special 'secure heap' memory. Along, optimize out `hashsum2bn' with `BN_lebin2bn'. | |||||
2019-10-15 | gost_ec_keyx: Remove redundant code | Vitaly Chikunov | 1 | -4/+0 | |
This `if' statement is redundant since ce40d60 ("Bugfix.") get_gost_engine_param() have no side effects and `param' is set to `gost_cipher_list' only if already equal to `gost_cipher_list'. | |||||
2019-10-15 | gost_ec_keyx: Fix CID 253282 Dereference null return value | Vitaly Chikunov | 1 | -0/+2 | |
`param' is used unconditionally in pkey_GOST_ECcp_encrypt() so we can unconditionally check (vs in any particular `if' branch) for it's being non-NULL. This is similar to how pkey_GOST_ECcp_decrypt() works with `param'. Closes #174. | |||||
2019-09-26 | gost_ec_keyx: Fix CID 253283 Unchecked return value in VKO_compute_key | Vitaly Chikunov | 1 | -2/+5 | |
Calling EC_POINT_get_affine_coordinates() without checking return value. Some fixes for Coverity Scan from issue #174. | |||||
2019-09-05 | Make VKO_compute_key public. | Dmitry Timoshkov | 1 | -4/+4 | |
2019-04-04 | Cofactor should be taken into account in VKO | Dmitry Belyavskiy | 1 | -1/+4 | |
2018-12-29 | Some PVS Studio nits | Dmitry Belyavskiy | 1 | -2/+1 | |
2018-12-25 | Avoid double-free, restore ephemeral mode self-compatibility | Dmitry Belyavskiy | 1 | -2/+7 | |
2018-12-25 | Non-ephemeral sec_key, more on TLS 1.2, remove extra params from VKO | Dmitry Belyavskiy | 1 | -18/+27 | |
2018-12-18 | Errors adjusted | Dmitry Belyavskiy | 1 | -1/+1 | |
2018-12-06 | New master API versioning. | Dmitry Belyavskiy | 1 | -1/+1 | |
2018-09-07 | We should get key nid from our private key, not from peer's ephemeral | Dmitry Belyavskiy | 1 | -1/+1 | |
2018-09-06 | One more TODO | Dmitry Belyavskiy | 1 | -0/+10 | |
2018-09-04 | Let's wrap old and new key enncryption together | Dmitry Belyavskiy | 1 | -4/+32 | |
2018-09-04 | GOST key transport 2018 - decrypt as separate function | Dmitry Belyavskiy | 1 | -19/+91 | |
2018-09-04 | GOST key export, separate function | Dmitry Belyavskiy | 1 | -1/+92 | |
2018-09-03 | KDF TREE + test | Dmitry Belyavskiy | 1 | -15/+96 | |
2018-09-03 | Refactoring of VKO | Dmitry Belyavskiy | 1 | -16/+24 | |
2018-08-30 | Indentation | Dmitry Belyavskiy | 1 | -10/+9 | |
2017-06-27 | Fix compiler warnings | Mouse | 1 | -1/+0 | |
2016-12-15 | Some cleanup | Dmitry Belyavskiy | 1 | -17/+15 | |
2016-12-11 | Fix return value of gost_ec_derive | Dmitry Belyavskiy | 1 | -1/+1 | |
2016-03-26 | Opaquization fixes + sources formatting. | Dmitry Belyavskiy | 1 | -2/+2 | |
2016-01-04 | Correct initializing the context | Dmitry Belyavskiy | 1 | -5/+11 | |
2016-01-03 | openssl 1.1.0 compatibility | Dmitry Belyavskiy | 1 | -7/+7 | |
2016-01-02 | Formatting fix | Dmitry Belyavskiy | 1 | -2/+3 | |
2015-10-06 | Build fix | Dmitry Belyavskiy | 1 | -0/+1 | |
2015-10-03 | Fixes of error codes. Check result of EC_POINT_mul | Dmitry Belyavskiy | 1 | -5/+7 | |
2015-08-21 | Bugfix. | Dmitry Belyavskiy | 1 | -1/+1 | |
2015-08-15 | Merge branch 'no_gost94_sig' into gost12_algs | Dmitry Belyavskiy | 1 | -6/+4 | |
Conflicts: Makefile e_gost_err.c e_gost_err.h gost2001.c gost94_keyx.c gost_ameth.c gost_asn1.c gost_eng.c gost_lcl.h gost_params.c gost_params.h gost_pmeth.c gost_sign.c | |||||
2015-08-14 | Initial commit providing GOST 2012 algorithms. | Dmitry Belyavskiy | 1 | -0/+339 | |