boringssl/crypto
Brian Smith febf77190f Verify consistency of RSA keys after generation & parsing.
Call |RSA_check_key| after parsing an RSA private key in order to
verify that the key is consistent. This is consistent with ECC key
parsing, which does a similar key check.

Call |RSA_check_key| after key generation mostly as a way of
double-checking the key generation was done correctly. A similar check
was not added to |EC_KEY_generate| because |EC_KEY_generate| is used
for generating ephemeral ECDH keys, and the check would be too
expensive for that use.

Change-Id: I5759d0d101c00711bbc30f81a3759f8bff01427c
Reviewed-on: https://boringssl-review.googlesource.com/7522
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: Adam Langley <agl@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
2016-12-16 17:37:03 +00:00
..
aes aes/asm/aesp8-ppc.pl: improve [backward] portability. 2016-11-10 16:20:02 +00:00
asn1 Don't leak memory on ASN1_GENERALIZEDTIME_adj() error path 2016-11-10 16:17:29 +00:00
base64 Use C99 for size_t loops. 2016-09-12 19:44:24 +00:00
bio Add a simplified SSL BIO for curl. 2016-12-08 20:33:22 +00:00
bn Remove RSAZ-512. 2016-12-14 22:12:50 +00:00
buf
bytestring Add CBS functions for working with BIT STRINGs. 2016-12-14 17:25:30 +00:00
chacha Use fewer macros in C ChaCha implementation. 2016-09-13 01:56:09 +00:00
cipher Import a test vector from upstream. 2016-12-14 17:48:36 +00:00
cmac
conf Add a no-op |OPENSSL_no_config|. 2016-10-19 19:43:35 +00:00
curve25519 Add ED25519_keypair_from_seed. 2016-11-03 17:30:30 +00:00
des Fix up macros. 2016-10-18 18:28:23 +00:00
dh Remove the remaining bssl::Main wrappers. 2016-12-08 00:54:17 +00:00
digest Remove the remaining bssl::Main wrappers. 2016-12-08 00:54:17 +00:00
dsa
ec Revert "Include some C versions of the x86-64 P-256 code." 2016-12-15 10:35:12 -08:00
ecdh Const-correct ECDH_compute_key. 2016-10-09 17:53:19 +00:00
ecdsa
engine Remove trailing ';' from macros 2016-09-12 19:17:26 +00:00
err Don't depend on the X509 code for getting public keys. 2016-12-13 21:27:31 +00:00
evp Check input length to pkey_rsa_verify and add initial tests. 2016-12-16 17:16:57 +00:00
hkdf
hmac Remove the remaining bssl::Main wrappers. 2016-12-08 00:54:17 +00:00
lhash Use C99 for size_t loops. 2016-09-12 19:44:24 +00:00
md4 Fix up macros. 2016-10-18 18:28:23 +00:00
md5 Fix up macros. 2016-10-18 18:28:23 +00:00
modes Add generic AES-GCM-SIV support. 2016-12-07 00:13:50 +00:00
obj Remove CECPQ1 (experimental post-quantum key agreement). 2016-12-09 19:16:56 +00:00
pem
perlasm perlasm/x86_64-xlate.pl: refine sign extension in ea package. 2016-12-14 17:36:29 +00:00
pkcs8 Use C99 for size_t loops. 2016-09-12 19:44:24 +00:00
poly1305 Always assume little-endian in Poly1305 reference code. 2016-11-10 22:34:03 +00:00
pool Add missing include. 2016-10-28 19:56:32 +00:00
rand Revert "crypto/rand: Fix a crash bug in RAND_enable_fork_unsafe_buffering." and "Enable getrandom for entropy gathering." 2016-12-15 20:17:27 +00:00
rc4 Simplify RC4 code and remove assembly. 2016-08-30 15:32:31 +00:00
rsa Verify consistency of RSA keys after generation & parsing. 2016-12-16 17:37:03 +00:00
sha Sync with upstream's version of sha256-armv4.pl. 2016-11-30 17:37:24 +00:00
stack Use C99 for size_t loops. 2016-09-12 19:44:24 +00:00
test C++ crypto/test/malloc.cc more. 2016-10-14 16:01:26 +00:00
x509 Fix X509_parse_from_buffer when failing to parse. 2016-12-08 16:20:49 +00:00
x509v3 Fix x509v3_cache_extensions locking. 2016-12-05 23:12:49 +00:00
CMakeLists.txt Remove New Hope key agreement. 2016-12-10 01:06:31 +00:00
constant_time_test.c
cpu-aarch64-linux.c
cpu-arm-linux.c Make CRYPTO_is_NEON_capable aware of the buggy CPU. 2016-04-28 16:42:21 +00:00
cpu-arm.c
cpu-intel.c
cpu-ppc64le.c Add PPC64LE assembly for AES-GCM. 2016-09-27 18:43:20 +00:00
crypto.c Add PPC64LE assembly for AES-GCM. 2016-09-27 18:43:20 +00:00
ex_data.c Use C99 for size_t loops. 2016-09-12 19:44:24 +00:00
internal.h Add PPC64LE assembly for AES-GCM. 2016-09-27 18:43:20 +00:00
mem.c Remove a clang-cl workaround that's no longer needed. 2016-10-25 21:10:52 +00:00
refcount_c11.c
refcount_lock.c
refcount_test.c
thread_none.c
thread_pthread.c Use pthreads on MinGW. 2016-09-20 22:25:14 +00:00
thread_test.c
thread_win.c Use pthreads on MinGW. 2016-09-20 22:25:14 +00:00
thread.c
time_support.c