mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-11-27 05:21:51 +08:00
Code Issues Packages Projects Releases Wiki Activity
3a37ddde91
openssl/crypto/ffc
History
Shane Lontis 3a37ddde91 Fix DSA EVP_PKEY_param_check() when defaults are used for param generation. 
Fixes #14480

An internal flag that is set during param gen was not being tested, so
the wrong type was used to select the dsa domain param validation method.

In the default provider - if no gen_type is set then by default the fips186_4 gentype
will be selected when pbits >=2048 otherwise it selects fips186_2.
The fips provider ignores the gen_type and always uses fips186_4.

Before this change dsa used fips186_2 by default in the default
provider.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14508)
2021-03-15 09:01:51 +10:00
..
build.info EVP_PKEY & DH: Make DH EVP_PKEY_CTX parameter ctrls / setters more available 2020-12-16 11:55:39 +01:00
ffc_backend.c EVP_PKEY & DH: Make DH EVP_PKEY_CTX parameter ctrls / setters more available 2020-12-16 11:55:39 +01:00
ffc_dh.c Fix external symbols for bn 2021-02-26 10:32:22 +10:00
ffc_key_generate.c ffc: add _ossl to exported but internal functions 2020-10-06 09:04:19 +10:00
ffc_key_validate.c ffc: add _ossl to exported but internal functions 2020-10-06 09:04:19 +10:00
ffc_params_generate.c Update copyright year 2021-03-11 13:27:36 +00:00
ffc_params_validate.c Fix DSA EVP_PKEY_param_check() when defaults are used for param generation. 2021-03-15 09:01:51 +10:00
ffc_params.c EVP_PKEY & DH: Make DH EVP_PKEY_CTX parameter ctrls / setters more available 2020-12-16 11:55:39 +01:00