Skip to content
  1. Apr 18, 2017
  2. Apr 17, 2017
    • Rich Salz's avatar
      Catch EC_R_UNKNOWN_GROUP in check_unsupported() · dca39445
      Rich Salz authored
      
      
      If EC support is enabled we should catch also EC_R_UNKNOWN_GROUP as an hint to
      an unsupported algorithm/curve (e.g. if binary EC support is disabled).
      
      Before this commit the issue arise for example if binary EC keys are added in
      evptests.txt, and the test is run when EC is enabled but EC2m is disabled.
      
      E.g. adding these lines to evptests.txt would reproduce the issue:
      
      ~~~
      
      PrivateKey=KAS-ECC-CDH_K-163_C0
      -----BEGIN PRIVATE KEY-----
      MGMCAQAwEAYHKoZIzj0CAQYFK4EEAAEETDBKAgEBBBUAZlO2B3OY+tx79eYBWBcB
      SMPcRSehLgMsAAQHH4sod9YCfZwa3kJE8t6hJpLvI9UFwV7ndiIccrhLNHzjg/OA
      Z7icPpo=
      -----END PRIVATE KEY-----
      
      PublicKey=KAS-ECC-CDH_K-163_C0-PUBLIC
      -----BEGIN PUBLIC KEY-----
      MEAwEAYHKoZIzj0CAQYFK4EEAAEDLAAEBx+LKHfWAn2cGt5CRPLeoSaS7yPVBcFe
      53YiHHK4SzR844PzgGe4nD6a
      -----END PUBLIC KEY-----
      
      PublicKey=KAS-ECC-CDH_K-163_C0-Peer-PUBLIC
      -----BEGIN PUBLIC KEY-----
      MEAwEAYHKoZIzj0CAQYFK4EEAAEDLAAEBXQjbxQoxDITCUZ4Ols6q7bCfqXWB5CM
      JRuNoCHLrCgfEj969PrFs9u4
      -----END PUBLIC KEY-----
      
      Derive=KAS-ECC-CDH_K-163_C0
      PeerKey=KAS-ECC-CDH_K-163_C0-Peer-PUBLIC
      Ctrl=ecdh_cofactor_mode:1
      SharedSecret=04325bff38f1b0c83c27f554a6c972a80f14bc23bc
      
      ~~~
      
      Reviewed-by: default avatarAndy Polyakov <appro@openssl.org>
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      (Merged from https://github.com/openssl/openssl/pull/3226)
      
      (cherry picked from commit 0c44545c)
      dca39445
  3. Apr 14, 2017
  4. Apr 13, 2017
  5. Apr 12, 2017
  6. Apr 11, 2017
  7. Apr 10, 2017
  8. Apr 08, 2017
  9. Apr 07, 2017
  10. Apr 06, 2017
  11. Apr 04, 2017
  12. Apr 03, 2017
  13. Apr 02, 2017
  14. Apr 01, 2017