]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f7fd434) | patch
FIPS: Add EDDSA public key validation.
authorslontis <shane.lontis@oracle.com>
Thu, 22 Aug 2024 01:50:17 +0000 (11:50 +1000)
committerTomas Mraz <tomas@openssl.org>
Fri, 23 Aug 2024 19:23:53 +0000 (21:23 +0200)
commitbb1aab38a6a3751bf61319c2aa40a6ffd4ea910c
treef0b32fbe8c0833631b0b2958b2afe1b43ece2f91tree
parentf7fd43402c73dcc2d8fced1fca60f7da9a3a2a45commit | diff
FIPS: Add EDDSA public key validation.

EVP_PKEY_public_check() can be used by ED25519 and ED448 in order to
determine if the public key is a valid point on the curve.

The FIPS ACVP tests require public key validation tests.
See https://github.com/usnistgov/ACVP-Server/blob/master/gen-val/json-files/EDDSA-KeyVer-1.0/internalProjection.json

Note that this is NOT required to be called before EDDSA signature verification
since it is done internally.

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25265)
crypto/ec/curve25519.c diff | blob | blame | history
crypto/ec/curve448/eddsa.c diff | blob | blame | history
include/crypto/ecx.h diff | blob | blame | history
providers/implementations/keymgmt/ecx_kmgmt.c diff | blob | blame | history
test/acvp_test.c diff | blob | blame | history
test/acvp_test.inc diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git