Niels Möller [Wed, 28 Nov 2018 20:52:30 +0000 (21:52 +0100)]
rsa-internal.h: Add include of rsa.h.
Niels Möller [Tue, 27 Nov 2018 07:56:27 +0000 (08:56 +0100)]
Describe RSA improvements in NEWS.
Niels Möller [Tue, 27 Nov 2018 07:21:02 +0000 (08:21 +0100)]
Rewrote _rsa_sec_compute_root, for clarity.
Use new local helper functions, with their own itch functions.
Niels Möller [Mon, 26 Nov 2018 06:32:28 +0000 (07:32 +0100)]
rsa-compute-root-test: Fix qsize. Try more keys.
Niels Möller [Sun, 25 Nov 2018 20:57:59 +0000 (21:57 +0100)]
Update mini-gmp version for _rsa_sec_compute_root_tr rename.
Niels Möller [Sun, 25 Nov 2018 19:29:07 +0000 (20:29 +0100)]
Renamed rsa-sec-compute-root-test --> rsa-compute-root-test.
Niels Möller [Sun, 25 Nov 2018 19:10:13 +0000 (20:10 +0100)]
cnd_mpn_zero: Use a volatile-declared mask variable.
Niels Möller [Sun, 25 Nov 2018 18:46:30 +0000 (19:46 +0100)]
Move decl. of rsa_sec_compute_root_tr to internal header.
Also renamed with leading underscore, and updated all callers.
Simo Sorce [Sun, 25 Nov 2018 18:23:38 +0000 (19:23 +0100)]
Switch rsa_compute_root to use side-channel safe variant
Niels Möller [Sun, 25 Nov 2018 17:53:55 +0000 (18:53 +0100)]
ChangeLog for previous change.
Simo Sorce [Fri, 9 Nov 2018 22:32:04 +0000 (17:32 -0500)]
Randomzed testing of rsa-sec-compute-root
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sun, 25 Nov 2018 16:11:39 +0000 (17:11 +0100)]
testutils.c: Fix high bits of the mpz_urandomb used with mini-gmp.
Niels Möller [Sun, 25 Nov 2018 16:06:21 +0000 (17:06 +0100)]
ChangeLog for previous change.
Simo Sorce [Thu, 8 Nov 2018 16:27:05 +0000 (11:27 -0500)]
Catch bad private keys early on.
Niels Möller [Sun, 25 Nov 2018 15:58:38 +0000 (16:58 +0100)]
Use NETTLE_OCTET_SIZE_TO_LIMB_SIZE.
Niels Möller [Sun, 25 Nov 2018 15:57:27 +0000 (16:57 +0100)]
ChangeLog for previous change.
Simo Sorce [Mon, 12 Nov 2018 22:06:31 +0000 (17:06 -0500)]
Use side-channel silent pkcs1 in rsa_decrypt_tr
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sun, 25 Nov 2018 15:47:23 +0000 (16:47 +0100)]
ChangeLog entry, and minor comment fixes
Simo Sorce [Mon, 12 Nov 2018 18:54:47 +0000 (13:54 -0500)]
Add variable len pkcs1-sec decoding function
add a side-channel silent pkcs1 decoding function for use in older
APIs.
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sun, 25 Nov 2018 15:23:06 +0000 (16:23 +0100)]
Tweak valgrind marking is rsa_sec_decrypt tests.
* testsuite/rsa-sec-decrypt-test.c (rsa_decrypt_for_test): Tweak
valgrind marking, and document potential leakage of lowest and
highest bits of p and q.
Niels Möller [Sun, 25 Nov 2018 15:10:11 +0000 (16:10 +0100)]
Avoid calls to mpz_sizeinbase on RSA private key.
* rsa-sec-compute-root.c (_rsa_sec_compute_root): Avoid calls to
mpz_sizeinbase, since that potentially leaks most significant bits
of private key parameters a and b.
Niels Möller [Sun, 25 Nov 2018 15:05:40 +0000 (16:05 +0100)]
ChangeLog for previous change.
Simo Sorce [Mon, 15 Oct 2018 20:01:52 +0000 (16:01 -0400)]
Unit test for rsa_sec_decyrpt
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sun, 25 Nov 2018 10:14:26 +0000 (11:14 +0100)]
ChangeLog for previous change.
Simo Sorce [Wed, 10 Oct 2018 20:15:49 +0000 (16:15 -0400)]
Add rsa_sec_decrypt as side-channel silent variant
Use side-channel silent RSA root function as well as PKCS1 padding
functions.
This variant accepts only a fixed length message, and returns error
if the pkcs1 padding returns a different length message.
The buffer is always left unchanged on error so that a TLS
implementation can pre-initialize it with a random key to use on
decoding error.
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sun, 25 Nov 2018 09:38:23 +0000 (10:38 +0100)]
pkcs1-sec-decrypt-test.c: Fix valgrind marking of return value.
Niels Möller [Sun, 25 Nov 2018 09:37:22 +0000 (10:37 +0100)]
ChangeLog for previous change.
Simo Sorce [Tue, 23 Oct 2018 22:14:30 +0000 (18:14 -0400)]
Unit test for pkcs1-sec-decrypt
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sun, 25 Nov 2018 09:29:02 +0000 (10:29 +0100)]
ChangeLog for previous change.
Simo Sorce [Mon, 12 Nov 2018 18:59:06 +0000 (13:59 -0500)]
Add mpn_get_base256
Converts limbs to uint8_t buffer without conditional jumps.
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sun, 25 Nov 2018 09:22:38 +0000 (10:22 +0100)]
ChangeLog for previous change.
Simo Sorce [Thu, 8 Nov 2018 19:38:12 +0000 (14:38 -0500)]
Add side-channel silent pkcs1 decoding function
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sat, 24 Nov 2018 10:44:01 +0000 (11:44 +0100)]
ChangeLog for previous change.
Simo Sorce [Mon, 15 Oct 2018 19:02:50 +0000 (15:02 -0400)]
Add a side-channel silent conditional memcpy
Originally from Niels, with minor changes to avoid compiler warnings.
Niels Möller [Sat, 24 Nov 2018 10:27:39 +0000 (11:27 +0100)]
ChangeLog entries, minor comment and spacing fixes
Simo Sorce [Thu, 8 Nov 2018 16:59:48 +0000 (11:59 -0500)]
Use side-channel silent root for rsa signatures
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sat, 24 Nov 2018 09:43:35 +0000 (10:43 +0100)]
ChangeLog entry and comment fixes.
Simo Sorce [Thu, 8 Nov 2018 16:15:59 +0000 (11:15 -0500)]
Add side-channel silent RSA root function
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sat, 24 Nov 2018 09:28:42 +0000 (10:28 +0100)]
ChangeLog for previous change.
Simo Sorce [Thu, 8 Nov 2018 19:47:13 +0000 (14:47 -0500)]
Add convenience macro for size calculation
Returns number of limbs needed to contain N bytes long number.
Signed-off-by: Simo Sorce <simo@redhat.com>
Niels Möller [Sat, 24 Nov 2018 09:11:39 +0000 (10:11 +0100)]
Initial NEWS entries for nettle-3.4.1.
Niels Möller [Sat, 24 Nov 2018 09:09:31 +0000 (10:09 +0100)]
Bump version numbers for nettle-3.4.1.
* configure.ac: Bump package version to 3.4.1.
(LIBNETTLE_MINOR): Bump library version to 6.5.
(LIBHOGWEED_MINOR): Bump library version to 4.5.
Niels Möller [Tue, 16 Jan 2018 21:50:28 +0000 (22:50 +0100)]
Add "fall through" comment.
(cherry picked from commit
c4a814d77d475c474182e3e7051e4ac304e3c9e8)
Niels Möller [Mon, 19 Nov 2018 20:24:29 +0000 (21:24 +0100)]
Copy .gitlab-ci.yml from master branch
Dmitry Eremin-Solenikov [Wed, 13 Jun 2018 09:41:40 +0000 (12:41 +0300)]
Fix quoting in autoconf ifunc test
* aclocal.m4 (NETTLE_CHECK_IFUNC): fix quoting so that
AC_LINK_IFELSE/AC_TRY_LINK is defined outside of this test.
Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
(cherry picked from commit
e07e5605b3da65e07c7fe5fcf1ce3b050595d1b5)
Dominyk Tiller [Sun, 17 Jun 2018 17:20:09 +0000 (19:20 +0200)]
testsuite/symbols-test: Exclude ____chkstk_darwin symbols.
These are produced by Apple's Xcode 10 compiler.
(cherry picked from commit
f3e2607fce0c6da41eb1d9ee89b9535d4abec7be)
Niels Möller [Sun, 18 Feb 2018 09:18:00 +0000 (10:18 +0100)]
Fix link failure for pss-mgf1-test, in non-hogweed builds.
(cherry picked from commit
c5fc9131b13d53b07b7aa371f30df8621cf2abb8)
Niels Möller [Tue, 16 Jan 2018 21:49:37 +0000 (22:49 +0100)]
tools/pkcs1-conv.c: Add missing break statements.
(cherry picked from commit
20c7ba59e2cb54f1bec7d679dbdbe00c42bdd190)
Niels Möller [Thu, 9 Aug 2018 18:54:18 +0000 (20:54 +0200)]
Avoid cast between incompatible function types.
(cherry picked from commit
71f68cc45a269b206fc996309ef026f39d5af3df)
Niels Möller [Wed, 10 Oct 2018 17:16:40 +0000 (19:16 +0200)]
Add missing includes of stdlib.h.
(cherry picked from commit
7b4d6de8044e73849c2f24ce0322ae3fc48765a6)
Niels Möller [Thu, 9 Aug 2018 18:27:57 +0000 (20:27 +0200)]
des-compat.c: Change length argument type from uint32_t to size_t.
(cherry picked from commit
f3bbc422efed4149b5661e064360ee678b23113a)
Niels Möller [Tue, 26 Dec 2017 23:09:00 +0000 (00:09 +0100)]
Fix version number typo in ChangeLog.
Niels Möller [Sun, 19 Nov 2017 09:06:15 +0000 (10:06 +0100)]
Note 3.4 release in ChangeLog.
Niels Möller [Sun, 19 Nov 2017 09:03:20 +0000 (10:03 +0100)]
Note mips32 tests of nettle-3.4.
Niels Möller [Sun, 19 Nov 2017 08:55:42 +0000 (09:55 +0100)]
Update NEWS with base64 and base16 changes.
Niels Möller [Sun, 19 Nov 2017 08:52:49 +0000 (09:52 +0100)]
Add missing ChangeLog for base64 changes.
Dated 2017-08-27.
Niels Möller [Wed, 15 Nov 2017 21:52:21 +0000 (22:52 +0100)]
Note sparc tests.
Niels Möller [Tue, 14 Nov 2017 14:29:24 +0000 (15:29 +0100)]
Update testing status.
Niels Möller [Sun, 12 Nov 2017 18:25:03 +0000 (19:25 +0100)]
Update check of GMP_NUMB_BITS declaration in assembly files.
Was broken by rename of configure variable GMP_NUMB_BITS -->
NUMB_BITS.
Niels Möller [Sat, 11 Nov 2017 09:16:47 +0000 (10:16 +0100)]
Update NEWS file.
Niels Möller [Sat, 11 Nov 2017 08:55:55 +0000 (09:55 +0100)]
Update manual
Niels Möller [Sat, 11 Nov 2017 08:49:07 +0000 (09:49 +0100)]
ChangeLog entry for previous change.
Niels Möller [Wed, 8 Nov 2017 21:48:53 +0000 (22:48 +0100)]
Revert change hiding nettle_secp_256r1 and friends.
Nikos Mavrogiannopoulos [Mon, 6 Nov 2017 15:32:48 +0000 (16:32 +0100)]
.gitlab-ci.yml: added build with gnutls
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Nikos Mavrogiannopoulos [Mon, 6 Nov 2017 15:19:55 +0000 (16:19 +0100)]
.gitlab-ci.yml: use pre-installed images for gnutls
This avoids the need to install packages during check, and
reduces failures due to infrastructure.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Niels Möller [Sun, 5 Nov 2017 22:34:35 +0000 (23:34 +0100)]
Update release plan.
Niels Möller [Sun, 5 Nov 2017 22:23:42 +0000 (23:23 +0100)]
Update NEWS file, including ABI issue.
Niels Möller [Sun, 5 Nov 2017 21:46:29 +0000 (22:46 +0100)]
Bump version numbers
Niels Möller [Thu, 2 Nov 2017 10:28:51 +0000 (11:28 +0100)]
Start on NEWS entries for nettle-3.4.
Niels Möller [Sun, 29 Oct 2017 09:09:49 +0000 (10:09 +0100)]
Merge branch 'api-opaque' into master-updates
Niels Möller [Mon, 23 Oct 2017 20:41:31 +0000 (22:41 +0200)]
ChangeLog for previous change.
Niels Möller [Mon, 23 Oct 2017 20:35:58 +0000 (22:35 +0200)]
Update ChangeLog.
Niels Möller [Mon, 23 Oct 2017 20:25:58 +0000 (22:25 +0200)]
Merge remote-tracking branch 'origin/master' into api-opaque
Niels Möller [Mon, 23 Oct 2017 20:05:32 +0000 (22:05 +0200)]
Undo added underscores on public symbols.
Niels Möller [Sun, 22 Oct 2017 07:47:48 +0000 (09:47 +0200)]
Set DYLD_LIBRARY_PATH when running tests.
Niels Möller [Tue, 17 Oct 2017 20:37:33 +0000 (22:37 +0200)]
Merge branch 'support-cfb' into master-updates
Niels Möller [Tue, 17 Oct 2017 20:27:33 +0000 (22:27 +0200)]
Update copyright years for CFB code.
Niels Möller [Mon, 16 Oct 2017 19:57:37 +0000 (21:57 +0200)]
Enable debug info when CC_FOR_BUILD is gcc.
* aclocal.m4 (GMP_PROG_CC_FOR_BUILD): Add -g when compiling with
gcc.
Niels Möller [Mon, 16 Oct 2017 19:52:05 +0000 (21:52 +0200)]
Commment fix.
Niels Möller [Mon, 16 Oct 2017 19:46:05 +0000 (21:46 +0200)]
ChangeLog for CFB.
Dmitry Eremin-Solenikov [Sat, 7 Oct 2017 18:55:27 +0000 (21:55 +0300)]
Add CFB block mode support
Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
Niels Möller [Sat, 14 Oct 2017 21:04:13 +0000 (23:04 +0200)]
Update .gitignore, to unclutter builds in the source directory.
Nikos Mavrogiannopoulos [Thu, 5 Oct 2017 19:41:30 +0000 (21:41 +0200)]
.gitlab-ci.yml: use fedora 26 build systems
Also removed unused variables.
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Nikos Mavrogiannopoulos [Thu, 5 Oct 2017 19:41:06 +0000 (21:41 +0200)]
.gitlab-ci.yml: renamed targets for better overview in gitlab pipeline interface
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Nikos Mavrogiannopoulos [Thu, 5 Oct 2017 13:28:15 +0000 (15:28 +0200)]
.gitlab-ci.yml: enable fat builds on x86*
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Nikos Mavrogiannopoulos [Thu, 5 Oct 2017 13:27:14 +0000 (15:27 +0200)]
.gitlab-ci.yml: added aarch64 build
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Niels Möller [Sun, 1 Oct 2017 21:45:52 +0000 (23:45 +0200)]
Update release plan.
Niels Möller [Thu, 28 Sep 2017 19:27:01 +0000 (21:27 +0200)]
Update release plan.
Niels Möller [Sun, 24 Sep 2017 11:38:30 +0000 (13:38 +0200)]
Merge branch 'armor-signedness' into master-updates
Niels Möller [Sun, 24 Sep 2017 11:33:46 +0000 (13:33 +0200)]
Fix remaining pointer-signedness warnings for base64.
* sexp-transport-format.c (base64_encode_in_place): New helper
function.
(sexp_transport_vformat): Use it.
* testsuite/base64-test.c (test_fuzz_once): Update to use char
type where appropriate.
(test_main): Use helper functions base64_encode_in_place and
base64_decode_in_place (copied to this file).
* tools/pkcs1-conv.c (base64_decode_in_place): New helper
function.
(decode_base64): Use it.
Niels Möller [Sun, 24 Sep 2017 11:15:46 +0000 (13:15 +0200)]
Fix pointer-signedness warnings in tests.
* testsuite/testutils.c (tstring_data): Use uint8_t for data
argument.
* testsuite/testutils.h (SDATA): Use US macro to cast data
argument.
Niels Möller [Thu, 14 Sep 2017 21:39:29 +0000 (23:39 +0200)]
hkdf: Reduce includes. Use Nettle licensing notice.
* hkdf.c: Delete unneeded includes. Use Nettle licensing notice.
* hkdf.h: Include only nettle-types.h, not nettle-meta.h.
Niels Möller [Thu, 14 Sep 2017 07:06:49 +0000 (09:06 +0200)]
Workaround to silence the clang static analyzer.
Niels Möller [Tue, 12 Sep 2017 20:38:34 +0000 (22:38 +0200)]
Avoid redefining mpn_zero_p when building with mini-gmp.
Niels Möller [Sat, 9 Sep 2017 19:50:58 +0000 (21:50 +0200)]
ChangeLog entries for Daiki Ueno's fixes.
Daiki Ueno [Sat, 5 Aug 2017 07:43:45 +0000 (09:43 +0200)]
eccdata: Redirect ecc_point_out to given stream, instead of stderr
Signed-off-by: Daiki Ueno <dueno@redhat.com>
Daiki Ueno [Sat, 5 Aug 2017 07:43:44 +0000 (09:43 +0200)]
eccdata: Emit correct ecc_Bmodq_shifted for curve448
In curve448, the bit size of the order is slightly smaller than the
one of p's. Adjust ecc_Bmodq_shifted accordingly.
Signed-off-by: Daiki Ueno <dueno@redhat.com>
Daiki Ueno [Sat, 5 Aug 2017 07:43:43 +0000 (09:43 +0200)]
ecc-mul-test: Fix mpn_cmp calls
Signed-off-by: Daiki Ueno <dueno@redhat.com>
Niels Möller [Sat, 9 Sep 2017 19:13:07 +0000 (21:13 +0200)]
Updated mini-gmp from the gmp repository, latest change from 2017-07-23.
Niels Möller [Wed, 6 Sep 2017 20:39:39 +0000 (22:39 +0200)]
Merge branch 'hkdf-support'
git.samba.org / gd / nettle / log