- 19 6月, 2018 1 次提交
-
-
由 Sohaib ul Hassan 提交于
This commit implements coordinate blinding, i.e., it randomizes the representative of an elliptic curve point in its equivalence class, for prime curves implemented through EC_GFp_simple_method, EC_GFp_mont_method, and EC_GFp_nist_method. This commit is derived from the patch https://marc.info/?l=openssl-dev&m=131194808413635 by Billy Brumley. Coordinate blinding is a generally useful side-channel countermeasure and is (mostly) free. The function itself takes a few field multiplicationss, but is usually only necessary at the beginning of a scalar multiplication (as implemented in the patch). When used this way, it makes the values that variables take (i.e., field elements in an algorithm state) unpredictable. For instance, this mitigates chosen EC point side-channel attacks for settings such as ECDH and EC private key decryption, for the aforementioned curves. For EC_METHODs using different coordinate representations this commit does nothing, but the corresponding coordinate blinding function can be easily added in the future to extend these changes to such curves. Co-authored-by: NNicola Tuveri <nic.tuv@gmail.com> Co-authored-by: NBilly Brumley <bbrumley@gmail.com> Reviewed-by: NAndy Polyakov <appro@openssl.org> Reviewed-by: NMatt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6501)
-
- 20 6月, 2017 1 次提交
-
-
由 Rich Salz 提交于
Approved by Oracle. Reviewed-by: NBernd Edlinger <bernd.edlinger@hotmail.de> (Merged from https://github.com/openssl/openssl/pull/3585)
-
- 18 5月, 2016 1 次提交
-
-
由 Rich Salz 提交于
Reviewed-by: NRichard Levitte <levitte@openssl.org>
-
- 02 3月, 2016 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Reviewed-by: NRich Salz <rsalz@openssl.org>
-
- 29 2月, 2016 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Reviewed-by: NRich Salz <rsalz@openssl.org> Reviewed-by: NEmilia Käsper <emilia@openssl.org>
-
- 27 1月, 2016 1 次提交
-
-
由 Rich Salz 提交于
This was done by the following find . -name '*.[ch]' | /tmp/pl where /tmp/pl is the following three-line script: print unless $. == 1 && m@/\* .*\.[ch] \*/@; close ARGV if eof; # Close file to reset $. And then some hand-editing of other files. Reviewed-by: NViktor Dukhovni <viktor@openssl.org>
-
- 01 5月, 2015 1 次提交
-
-
由 Rich Salz 提交于
This gets BN_.*free: BN_BLINDING_free BN_CTX_free BN_FLG_FREE BN_GENCB_free BN_MONT_CTX_free BN_RECP_CTX_free BN_clear_free BN_free BUF_MEM_free Also fix a call to DSA_SIG_free to ccgost engine and remove some #ifdef'd dead code in engines/e_ubsec. Reviewed-by: NRichard Levitte <levitte@openssl.org>
-
- 22 1月, 2015 1 次提交
-
-
由 Matt Caswell 提交于
Reviewed-by: NTim Hudson <tjh@openssl.org>
-
- 09 12月, 2014 1 次提交
-
-
由 Matt Caswell 提交于
Reviewed-by: NTim Hudson <tjh@openssl.org>
-
- 08 12月, 2014 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Reviewed-by: NTim Hudson <tjh@openssl.org>
-
- 21 8月, 2014 1 次提交
-
-
由 Laszlo Papp 提交于
Reviewed-by: NDr. Stephen Henson <steve@openssl.org>
-
- 15 2月, 2011 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Move compression, point2oct and oct2point functions into separate files. Add a flags field to EC_METHOD. Add a flag EC_FLAGS_DEFAULT_OCT to use the default compession and oct functions (all existing methods do this). This removes dependencies from EC_METHOD while keeping original functionality.
-
- 24 4月, 2008 1 次提交
-
-
由 Andy Polyakov 提交于
platforms.
-
- 28 6月, 2005 1 次提交
-
-
由 Nils Larsch 提交于
-
- 04 5月, 2005 1 次提交
-
-
由 Nils Larsch 提交于
for now (it was broken anyway)
-
- 27 4月, 2005 1 次提交
-
-
由 Bodo Möller 提交于
("perl util/ck_errf.pl */*.c */*/*.c" still reports many more.)
-
- 12 4月, 2005 1 次提交
-
-
由 Nils Larsch 提交于
-
- 09 2月, 2003 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Nils Larsch
-
- 07 2月, 2003 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Nils Larsch Reviewed by: Bodo Moeller
-
- 28 1月, 2003 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Nils Larsch
-
- 18 11月, 2002 2 次提交
-
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
-
- 15 11月, 2002 1 次提交
-
-
由 Bodo Möller 提交于
-
- 04 11月, 2002 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Nils Larsch
-
- 29 10月, 2002 1 次提交
-
-
由 Richard Levitte 提交于
to be surrounded with braces, or the surrounding if..else will fail miserably in case the #else part is compiled.
-
- 28 10月, 2002 2 次提交
-
-
由 Bodo Möller 提交于
create new lock CRYPTO_LOCK_BN to avoid race condition
-
由 Bodo Möller 提交于
Submitted by: Nils Larsch
-
- 02 8月, 2002 2 次提交
-
-
由 Bodo Möller 提交于
the new method names where _GF... suffixes have been removed. Revert changes to ..._{get/set}_Jprojective_coordinates_...: The current implementation for ECC over binary fields does not use projective coordinates, and if it did, it would not use Jacobian projective coordinates; so it's OK to use the ..._GFp prefix for all this. Add author attributions to some files so that it doesn't look as if Sun wrote all of this :-)
-
由 Bodo Möller 提交于
Submitted by: Duglas Stebila <douglas.stebila@sun.com>, Sheueling Chang <sheueling.chang@sun.com> (CHANGES entries by Bodo Moeller)
-
- 20 3月, 2002 1 次提交
-
-
由 Bodo Möller 提交于
Restructure implementation of EC_GROUP_check(). Submitted by: Nils Larsch
-
- 18 3月, 2002 1 次提交
-
-
由 Bodo Möller 提交于
Add some WTLS curves. New function EC_GROUP_check() (this will probably be implemented differently soon). Submitted by: Nils Larsch Reviewed by: Bodo Moeller
-
- 11 3月, 2001 1 次提交
-
-
由 Bodo Möller 提交于
multiplication of an arbitrary number of points.
-
- 10 3月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
In crypto/ec #if 0 out structures which reference (currently) non existent functions because this breaks shared libraries.
-
- 09 3月, 2001 2 次提交
-
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
and an ectest.c that actually tests something.
-
- 08 3月, 2001 3 次提交
-
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
including EC arithmetics derived from Lenka Fibikova's code (with some additional optimizations).
-
- 07 3月, 2001 2 次提交
-
-
由 Bodo Möller 提交于
(they can't do much useful, but they will have to set pointers to NULL)
-
由 Bodo Möller 提交于
-