ring/openssl at 8ead3f531445004f1122d11fa7083e8d1bcc5200 - ring

History

David Benjamin 754bcf6dcb Don't expose EVP_PKEY internal representation through EVP_PKEY_assign

While EVP_PKEY_RSA, EVP_PKEY_DSA, and EVP_PKEY_EC have publicly-exposed
internaly representations, other EVP_PKEY types to not. EVP_PKEY_assign
should not allow callers to manipulate those representations.

As part of this, teach EVP_PKEY_assign_RSA, etc. to find their method
tables directly, rather than indirecting through an integer. This makes
those EVP APIs static-linker-friendly.

Bug: 618, 497
Change-Id: Ic45a7514e9a3adc505759f2327129f13faf03a65
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/60645
Auto-Submit: David Benjamin <davidben@google.com>
Reviewed-by: Bob Beck <bbe@google.com>
Commit-Queue: Bob Beck <bbe@google.com>

2023-06-09 21:17:26 +00:00

aead.h

Add back support for TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

2023-05-05 22:52:23 +00:00

aes.h

Clarify in-place rules for low-level AES mode functions.

2020-07-06 18:20:21 +00:00

arm_arch.h

Simplify __ARM_ARCH__ definition.

2022-01-07 18:41:53 +00:00

asn1_mac.h

Purge the remainder of asn1_mac.h.

2016-08-03 21:37:31 +00:00

asn1.h

Add ASN1_TIME_set_string_X509

2023-06-08 21:49:20 +00:00

asn1t.h

Align header guard style in the remaining headers.

2023-02-01 20:02:30 +00:00

base64.h

Add various OpenSSL compatibility functions.

2021-11-18 20:48:43 +00:00

base.h

Add SSL_CIPHER_get_handshake_digest

2023-06-08 17:16:14 +00:00

bio.h

Remove unimplemented SSL BIO_ctrl values

2023-04-26 16:51:21 +00:00

blake2.h

Remove unions in BLAKE2b implementation

2023-05-10 21:18:38 +00:00

blowfish.h

Fix some size_t to long casts.

2019-01-03 21:46:45 +00:00

bn.h

Remove BN_DEC_FMT2 and test the others

2023-06-02 05:55:45 +00:00

buf.h

Rename a number of BUF_* functions to OPENSSL_*.

2019-10-21 21:06:07 +00:00

buffer.h

Add buffer.h for compatibility.

2015-05-12 00:09:57 +00:00

bytestring.h

Rewrite c2i_ASN1_OBJECT

2023-03-16 23:46:11 +00:00

cast.h

Fix some size_t to long casts.

2019-01-03 21:46:45 +00:00

chacha.h

Handle ChaCha20 counter overflow consistently

2023-06-06 17:59:44 +00:00

cipher.h

Don't use negative values for unimplemented modes

2023-02-08 17:33:40 +00:00

cmac.h

Support symbol prefixes

2018-09-06 20:07:52 +00:00

conf.h

Remove variable expansion from CONF fuzzer

2023-05-24 17:25:03 +00:00

cpu.h

Move CPU detection symbols to crypto/internal.h.

2022-01-07 18:33:50 +00:00

crypto.h

Remove the last of the broken NEON workaround

2023-02-01 17:10:19 +00:00

ctrdrbg.h

Add CTRDBG_STATE to bssl::UniquePtr

2023-03-15 22:55:24 +00:00

curve25519.h

Support symbol prefixes

2018-09-06 20:07:52 +00:00

des.h

Add a warning to des.h.

2020-09-30 20:32:54 +00:00

dh.h

Make DH opaque.

2022-10-04 22:11:36 +00:00

digest.h

Zero out the values from the integrity check.

2022-01-14 22:09:00 +00:00

dsa.h

Make DSA opaque

2023-06-06 18:25:06 +00:00

dtls1.h

Opaquify DTLS structs.

2015-05-08 18:02:02 +00:00

e_os2.h

Add a stub e_os2.h header.

2018-05-08 01:32:14 +00:00

ec_key.h

Rewrite i2o_ECPublicKey with CBB_finish_i2d.

2022-12-07 17:28:38 +00:00

ec.h

Implement P256_XMD:SHA-256_SSWU_RO_ and P384_XMD:SHA-384_SSWU_RO_

2023-02-14 15:56:40 +00:00

ecdh.h

Add ECDH_compute_key_fips inside the module.

2018-07-30 22:40:31 +00:00

ecdsa.h

Cap the number of ECDSA and DSA sign iterations.

2023-02-23 15:59:47 +00:00

engine.h

Give ENGINE_free a return value.

2019-04-17 20:57:57 +00:00

err.h

Make ERR and thread use system malloc.

2023-02-11 17:32:19 +00:00

evp_errors.h

Refactor HPKE API to include explicit length parameters.

2021-03-19 17:24:14 +00:00

evp.h

Don't expose EVP_PKEY internal representation through EVP_PKEY_assign

2023-06-09 21:17:26 +00:00

ex_data.h

Fix -Wshorten-64-to-32 errors in ex_data.c.

2022-12-07 19:01:54 +00:00

hkdf.h

Fix calculation of draft-13 ECH confirmation signal.

2021-09-02 22:11:49 +00:00

hmac.h

Add HMAC_CTX_get_md.

2022-08-13 16:07:16 +00:00

hpke.h

Implement the AuthEncap/AuthDecap HPKE modes

2023-05-02 19:22:24 +00:00

hrss.h

hrss: use less stack space.

2021-07-15 19:18:41 +00:00

is_boringssl.h

Run comment conversion script on include/

2017-08-18 23:38:51 +00:00

kdf.h

Add EVP_PKEY_HKDF for OpenSSL compatibility.

2022-06-08 16:33:00 +00:00

kyber.h

Adding a C implementation of Kyber.

2023-03-30 17:05:20 +00:00

lhash.h

Unexport almost all of LHASH.

2021-06-22 22:45:22 +00:00

md4.h

Rename 'md' output parameter to 'out' and add bounds.

2019-04-08 18:19:01 +00:00

md5.h

Rename 'md' output parameter to 'out' and add bounds.

2019-04-08 18:19:01 +00:00

mem.h

Make OPENSSL_malloc push ERR_R_MALLOC_FAILURE on failure.

2023-02-13 22:13:11 +00:00

nid.h

Align Kyber names with draft-tls-westerbaan-xyber768d00

2023-05-04 02:28:38 +00:00

obj_mac.h

Rename obj_mac.h to nid.h and make it a multiply-includable header.

2016-03-31 20:45:35 +00:00

obj.h

Add a warning about OBJ_create and global state

2023-03-28 17:35:24 +00:00

objects.h

Move public headers to include/openssl/

2014-07-14 22:42:18 +00:00

opensslconf.h

Define OPENSSL_NO_SSL_TRACE.

2022-09-06 17:30:47 +00:00

opensslv.h

2015-05-20 22:58:14 +00:00

ossl_typ.h

Move public headers to include/openssl/

2014-07-14 22:42:18 +00:00

pem.h

Fix miscellaneous size_t truncations

2023-04-11 21:40:44 +00:00

pkcs7.h

Add PKCS7_bundle_raw_certificates function which takes CRYPTO_BUFFERs

2021-11-15 16:59:41 +00:00

pkcs8.h

Use X509 certificate alias as friendlyName in PKCS12

2022-03-28 17:57:41 +00:00

pkcs12.h

Move public headers to include/openssl/

2014-07-14 22:42:18 +00:00

poly1305.h

Remove alignment requirement on CRYPTO_poly1305_finish.

2020-01-06 19:10:12 +00:00

pool.h

Add CRYPTO_BUFFER_new_from_static_data_unsafe.

2021-10-25 19:06:48 +00:00

rand.h

Add RAND_get_system_entropy_for_custom_prng

2022-08-31 19:44:18 +00:00

rc4.h

Run comment conversion script on include/

2017-08-18 23:38:51 +00:00

ripemd.h

Rename 'md' output parameter to 'out' and add bounds.

2019-04-08 18:19:01 +00:00

rsa.h

Make RSA opaque

2023-06-09 02:57:17 +00:00

safestack.h

Rename safe_stack.h to safestack.h.

2015-02-20 23:33:48 +00:00

service_indicator.h

Add a service indicator for FIPS 140-3.

2022-05-23 23:37:16 +00:00

sha.h

Add SHA-512-256.

2020-04-15 21:23:37 +00:00

siphash.h

Add SipHash-2-4.

2019-07-10 21:14:32 +00:00

span.h

Use a helper function to implement get_all_foo_names functions.

2023-05-12 18:08:37 +00:00

srtp.h

Fold srtp.h into ssl.h.

2015-09-14 23:59:37 +00:00

ssl3.h

Remove the last of the filename comments.

2023-01-17 17:49:32 +00:00

ssl.h

Add SSL_CIPHER_get_handshake_digest

2023-06-08 17:16:14 +00:00

stack.h

Remove a pointer indirection in STACK_OF(T) comparisons

2023-06-07 17:36:09 +00:00

thread.h

Remove CRYPTO_MUTEX from public headers

2023-06-09 14:13:40 +00:00

time.h

Make OPENSSL_tm_to_posix and OPENSSL_posix_to_tm public API

2022-11-23 17:18:08 +00:00

tls1.h

Add back support for TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

2023-05-05 22:52:23 +00:00

trust_token.h

Add Trust Token version using standardized hash2curve.

2023-04-12 14:29:48 +00:00

type_check.h

Replace OPENSSL_STATIC_ASSERT with static_assert.

2022-07-30 20:16:43 +00:00

x509_vfy.h

Fold x509_vfy.h into x509.h.

2021-10-05 17:57:43 +00:00

x509.h

Const-correct a few X509_PURPOSE and X509_TRUST functions

2023-06-08 17:08:43 +00:00

x509v3.h

Const-correct a few X509_PURPOSE and X509_TRUST functions

2023-06-08 17:08:43 +00:00