openssl/crypto/evp
Shane Lontis e454a3934c Add a range check (from SP800-56Ar3) to DH key derivation.
Fixes #14401

Note that this moves the public key check out of DH compute_key() since
key validation does not belong inside this primitive..
The check has been moved to the EVP_PKEY_derive_set_peer() function so that
it generally applies to all exchange operations.. Use EVP_PKEY_derive_set_peer_ex()
to disable this behaviour.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14717)
2021-04-01 09:07:08 +10:00
..
asymcipher.c evp: add params arguments to init functions 2021-03-12 08:27:11 +10:00
bio_b64.c
bio_enc.c
bio_md.c
bio_ok.c
build.info
c_allc.c
c_alld.c
cmeth_lib.c
ctrl_params_translate.c EVP: One stray comma removed in crypto/evp/ctrl_params_translate.c 2021-03-31 13:28:46 +10:00
dh_ctrl.c Remove inclusion of unnecessary header files 2021-02-24 17:55:20 +01:00
dh_support.c Update copyright year 2021-03-11 13:27:36 +00:00
digest.c evp: fix coverity 1445872 - dereference after null check 2021-03-20 10:18:32 +10:00
dsa_ctrl.c Update copyright year 2021-03-11 13:27:36 +00:00
e_aes_cbc_hmac_sha1.c
e_aes_cbc_hmac_sha256.c
e_aes.c Add ossl_is_partially_overlapping symbol 2021-03-18 17:52:38 +10:00
e_aria.c enc: fix coverity 1451499, 1451501, 1451506, 1451507, 1351511, 1451514, 1451517, 1451523, 1451526m 1451528, 1451539, 1451441, 1451549, 1451568 & 1451572: improper use of negative value 2021-03-24 09:12:43 +10:00
e_bf.c
e_camellia.c enc: fix coverity 1451499, 1451501, 1451506, 1451507, 1351511, 1451514, 1451517, 1451523, 1451526m 1451528, 1451539, 1451441, 1451549, 1451568 & 1451572: improper use of negative value 2021-03-24 09:12:43 +10:00
e_cast.c
e_chacha20_poly1305.c
e_des3.c Add ossl_is_partially_overlapping symbol 2021-03-18 17:52:38 +10:00
e_des.c
e_idea.c
e_null.c
e_old.c
e_rc2.c
e_rc4_hmac_md5.c
e_rc4.c
e_rc5.c
e_seed.c
e_sm4.c Add ossl_ symbols for sm3 and sm4 2021-03-18 17:52:37 +10:00
e_xcbc_d.c
ec_ctrl.c Cleanup of some of the EVP_PKEY_CTX_ctrl related TODOs 2021-02-24 17:55:20 +01:00
ec_support.c Remove TODO comment. Resolves #14396 2021-03-18 20:07:09 +10:00
encode.c
evp_cnf.c
evp_enc.c Add ossl_is_partially_overlapping symbol 2021-03-18 17:52:38 +10:00
evp_err.c Fix reason code: EVP_R_OPERATON_NOT_INITIALIZED 2021-03-11 12:19:40 +10:00
evp_fetch.c property: default queries create the property values. 2021-03-16 09:19:20 +10:00
evp_key.c
evp_lib.c Add ossl_asn1 symbols 2021-03-18 17:52:37 +10:00
evp_local.h Add ossl_is_partially_overlapping symbol 2021-03-18 17:52:38 +10:00
evp_pbe.c
evp_pkey.c evp: fix coverity 1474469: negative return 2021-03-30 18:57:29 +02:00
evp_rand.c evp: add params argument to EVP_RAND_instantiate() 2021-02-28 17:25:49 +10:00
evp_utils.c
exchange.c Add a range check (from SP800-56Ar3) to DH key derivation. 2021-04-01 09:07:08 +10:00
kdf_lib.c Update copyright year 2021-03-11 13:27:36 +00:00
kdf_meth.c Update copyright year 2021-03-11 13:27:36 +00:00
kem.c evp: add params arguments to init functions 2021-03-12 08:27:11 +10:00
keymgmt_lib.c evp_keymgmt_util_copy: Fix possible leak on copy failure 2021-03-17 14:39:16 +01:00
keymgmt_meth.c keymgmt_meth: remove two TODO 3.0 2021-03-14 15:45:40 +10:00
legacy_blake2.c Update copyright year 2021-03-11 13:27:36 +00:00
legacy_md2.c
legacy_md4.c
legacy_md5_sha1.c
legacy_md5.c
legacy_mdc2.c
legacy_meth.h
legacy_ripemd.c
legacy_sha.c
legacy_wp.c
m_null.c
m_sigver.c evp: add params arguments to init functions 2021-03-12 08:27:11 +10:00
mac_lib.c Update copyright year 2021-03-11 13:27:36 +00:00
mac_meth.c evp: support modified gettable/settable ctx calls for MACs 2021-02-26 18:08:41 +10:00
names.c Update copyright year 2021-03-11 13:27:36 +00:00
p5_crpt2.c Add ossl_pkcs5_pbkdf2_hmac_ex symbol 2021-03-18 17:52:38 +10:00
p5_crpt.c
p_dec.c Update copyright year 2021-03-11 13:27:36 +00:00
p_enc.c Update copyright year 2021-03-11 13:27:36 +00:00
p_legacy.c evp: fix coverity 1467500 & 1467502: unchecked return values 2021-03-26 08:46:02 +10:00
p_lib.c Implement EVP_PKEY_dup() function 2021-03-28 16:38:57 +10:00
p_open.c
p_seal.c
p_sign.c
p_verify.c
pbe_scrypt.c Update copyright year 2021-03-11 13:27:36 +00:00
pmeth_check.c
pmeth_gn.c evp: add params argument to key manager's gen_init call 2021-03-12 08:27:11 +10:00
pmeth_lib.c evp: fix coverity 1470561: resource leak 2021-03-20 10:08:00 +10:00
signature.c evp: add params arguments to init functions 2021-03-12 08:27:11 +10:00