boringssl

History

David Benjamin d12f2ba55e Tweak RSA errors for compatibility. cryptography.io wants RSA_R_BLOCK_TYPE_IS_NOT_02, only used by the ancient RSA_padding_check_SSLv23 function. Define it but never emit it. Additionally, it's rather finicky about RSA_R_TOO_LARGE* errors. We merged them in BoringSSL because having RSA_R_TOO_LARGE, RSA_R_TOO_LARGE_FOR_MODULUS, and RSA_R_TOO_LARGE_FOR_KEY_SIZE is a little silly. But since we don't expect well-behaved code to condition on error codes anyway, perhaps that wasn't worth it. Split them back up. Looking through OpenSSL, there is a vague semantic difference: RSA_R_DIGEST_TOO_BIG_FOR_RSA_KEY - Specifically emitted if a digest is too big for PKCS#1 signing with this key. RSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE - You asked me to sign or encrypt a digest/plaintext, but it's too big for this key. RSA_R_DATA_TOO_LARGE_FOR_MODULUS - You gave me an RSA ciphertext or signature and it is not fully reduced modulo N. -OR- The padding functions produced something that isn't reduced, but I believe this is unreachable outside of RSA_NO_PADDING. RSA_R_DATA_TOO_LARGE - Some low-level padding function was told to copy a digest/plaintext into some buffer, but the buffer was too small. I think this is basically unreachable. -OR- You asked me to verify a PSS signature, but I didn't need to bother because the digest/salt parameters you picked were too big. Update-Note: This depends on cl/196566462. Change-Id: I2e539e075eff8bfcd52ccde365e975ebcee72567 Reviewed-on: https://boringssl-review.googlesource.com/28547 Reviewed-by: Adam Langley <agl@google.com>		6 years ago
..
aes	Revert "Revert "Revert "Revert "Make x86(-64) use the same aes_hw_* infrastructure as POWER and the ARMs.""""	6 years ago
bn	Enable ADX assembly.	6 years ago
cipher	Revert "Revert "Revert "Revert "Make x86(-64) use the same aes_hw_* infrastructure as POWER and the ARMs.""""	6 years ago
des	Move OPENSSL_FALLTHROUGH to internal headers.	6 years ago
digest	Switch OPENSSL_VERSION_NUMBER to 1.1.0.	7 years ago
ec	Enable ADX assembly.	6 years ago
ecdsa	Align ECDSA sign/verify scalar inversions.	6 years ago
hmac	Switch OPENSSL_VERSION_NUMBER to 1.1.0.	7 years ago
md4	Run the comment converter on libcrypto.	7 years ago
md5	Run the comment converter on libcrypto.	7 years ago
modes	Revert "Revert "Revert "Revert "Make x86(-64) use the same aes_hw_* infrastructure as POWER and the ARMs.""""	6 years ago
policydocs	Update FIPS documentation with pointer to the cert and security policy.	7 years ago
rand	Show an error before we abort the process for an entropy failure.	6 years ago
rsa	Tweak RSA errors for compatibility.	6 years ago
self_check	Split BORINGSSL_self_test into its own file.	6 years ago
sha	Add SHA256_TransformBlocks.	6 years ago
tls	Fix include path.	6 years ago
CMakeLists.txt	Convert example_mul to GTest.	7 years ago
FIPS.md	Update link to CMVP certificate.	6 years ago
bcm.c	Move some RSA keygen support code into separate files.	6 years ago
delocate.h	Run the comment converter on libcrypto.	7 years ago
intcheck1.png	First part of the FIPS module.	7 years ago
intcheck2.png	Inject FIPS hash without running module.	7 years ago
intcheck3.png	First part of the FIPS module.	7 years ago
is_fips.c	Add some more compatibility functions.	6 years ago