]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 32b43b9) | patch
Add FIPS indicators to X25519 and X448.
authorslontis <shane.lontis@oracle.com>
Wed, 21 Aug 2024 07:43:19 +0000 (17:43 +1000)
committerPauli <ppzgs1@gmail.com>
Sun, 25 Aug 2024 00:50:05 +0000 (10:50 +1000)
commitc37e21763b1d460b06a4f94baf6682f96000810f
treec90f4ae87c57cf09e39a170a6cb0105fcb0cfce9tree
parent32b43b9160cfcbb2940a0666869a680db827b892commit | diff
Add FIPS indicators to X25519 and X448.
X25519 and X448 are unapproved in FIPS 140-3
So always trigger the indicator callback if these Keys are used,
and add "fips-indicator" getters that return 0.

This has been added to keygen and key exchange.
(KEM will also require it if ever becomes a FIPS algorithm).

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
(Merged from https://github.com/openssl/openssl/pull/25246)
doc/man7/EVP_KEYEXCH-X25519.pod diff | blob | blame | history
doc/man7/EVP_PKEY-X25519.pod diff | blob | blame | history
providers/implementations/exchange/ecx_exch.c diff | blob | blame | history
providers/implementations/keymgmt/ecx_kmgmt.c diff | blob | blame | history
test/evp_test.c diff | blob | blame | history
test/recipes/30-test_evp_data/evppkey_ecx.txt diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git