Skip to content
  1. Apr 17, 2017
    • Rich Salz's avatar
      Catch EC_R_UNKNOWN_GROUP in check_unsupported() · 0c44545c
      Rich Salz authored
      
      
      If EC support is enabled we should catch also EC_R_UNKNOWN_GROUP as an hint to
      an unsupported algorithm/curve (e.g. if binary EC support is disabled).
      
      Before this commit the issue arise for example if binary EC keys are added in
      evptests.txt, and the test is run when EC is enabled but EC2m is disabled.
      
      E.g. adding these lines to evptests.txt would reproduce the issue:
      
      ~~~
      
      PrivateKey=KAS-ECC-CDH_K-163_C0
      -----BEGIN PRIVATE KEY-----
      MGMCAQAwEAYHKoZIzj0CAQYFK4EEAAEETDBKAgEBBBUAZlO2B3OY+tx79eYBWBcB
      SMPcRSehLgMsAAQHH4sod9YCfZwa3kJE8t6hJpLvI9UFwV7ndiIccrhLNHzjg/OA
      Z7icPpo=
      -----END PRIVATE KEY-----
      
      PublicKey=KAS-ECC-CDH_K-163_C0-PUBLIC
      -----BEGIN PUBLIC KEY-----
      MEAwEAYHKoZIzj0CAQYFK4EEAAEDLAAEBx+LKHfWAn2cGt5CRPLeoSaS7yPVBcFe
      53YiHHK4SzR844PzgGe4nD6a
      -----END PUBLIC KEY-----
      
      PublicKey=KAS-ECC-CDH_K-163_C0-Peer-PUBLIC
      -----BEGIN PUBLIC KEY-----
      MEAwEAYHKoZIzj0CAQYFK4EEAAEDLAAEBXQjbxQoxDITCUZ4Ols6q7bCfqXWB5CM
      JRuNoCHLrCgfEj969PrFs9u4
      -----END PUBLIC KEY-----
      
      Derive=KAS-ECC-CDH_K-163_C0
      PeerKey=KAS-ECC-CDH_K-163_C0-Peer-PUBLIC
      Ctrl=ecdh_cofactor_mode:1
      SharedSecret=04325bff38f1b0c83c27f554a6c972a80f14bc23bc
      
      ~~~
      
      Reviewed-by: default avatarAndy Polyakov <appro@openssl.org>
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      (Merged from https://github.com/openssl/openssl/pull/3226)
      0c44545c
  2. Apr 16, 2017
  3. Apr 14, 2017
  4. Apr 13, 2017
  5. Apr 12, 2017