[openssl-dev] Constant Time Conversion of Bytes to P521 Multiplier

2016-12-12 Thread Nathaniel McCallum
I'm working on a draft[0] and an implementation[1] of a protocol using elliptic curves. As part of this draft, we need to convert a byte array to a multiplier. This byte array is a private long-term key. Specifically of concern is this comment: https://github.com/openssl/openssl/blob/master/crypt

Re: [openssl-dev] Typo in BUF_reverse manual

2016-12-12 Thread Dmitry Belyavsky
Dear Matt, Shouldn't the fix also be applied to 1.1.0 branch? On Mon, Dec 12, 2016 at 3:44 PM, Dmitry Belyavsky wrote: > Hello Matt, > > https://github.com/openssl/openssl/pull/2075 > > On Mon, Dec 12, 2016 at 3:17 PM, Matt Caswell wrote: > >> Could you open that as an issue in GitHub? Or even

[openssl-dev] Support for deterministic ECDSA signatures

2016-12-12 Thread Eran Messeri via openssl-dev
Hi, Would it be possible to have OpenSSL support generation of ECDSA signatures in a deterministic manner? This would be necessary to implement RFC6962-bis. Specifically, Section 12.4 (draft 21) requires the use of deterministic signatures ( https://tools.ietf.org/html/draft-ietf-trans-rfc6962-bi

Re: [openssl-dev] [RFC v2 2/2] pem: load engine keys

2016-12-12 Thread Richard Levitte
In message <584d7f4e.8090...@roumenpetrov.info> on Sun, 11 Dec 2016 18:31:10 +0200, Roumen Petrov said: openssl> One remark for store load function api - in most cases (load from openssl> file) it is password callback but is other cases it could be PIN or openssl> something different. openssl> P

Re: [openssl-dev] Typo in BUF_reverse manual

2016-12-12 Thread Dmitry Belyavsky
Hello Matt, https://github.com/openssl/openssl/pull/2075 On Mon, Dec 12, 2016 at 3:17 PM, Matt Caswell wrote: > Could you open that as an issue in GitHub? Or even better a PR to fix it > ;-) > > Thanks > > Matt > > > On 12/12/16 12:16, Dmitry Belyavsky wrote: > > Hello! > > > > I found a typo i

Re: [openssl-dev] Typo in BUF_reverse manual

2016-12-12 Thread Matt Caswell
Could you open that as an issue in GitHub? Or even better a PR to fix it ;-) Thanks Matt On 12/12/16 12:16, Dmitry Belyavsky wrote: > Hello! > > I found a typo in the BUF_reverse manual > (https://www.openssl.org/docs/man1.1.0/crypto/BUF_MEM_new_ex.html) > > The manual says: > > BUF_reverse

[openssl-dev] Typo in BUF_reverse manual

2016-12-12 Thread Dmitry Belyavsky
Hello! I found a typo in the BUF_reverse manual (https://www.openssl.org/docs/man1.1.0/crypto/BUF_MEM_new_ex.html) The manual says: BUF_reverse() reverses size bytes at in into out. If out is NULL, the array is reversed in-place. But in fact in-place reverse is done when the in ptr is NULL. Th