jeltz
/
hostap
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
17,172 Commits 3 Branches 0 Tags 25 MiB
Commit Graph

4 Commits

Author SHA1 Message Date
Jouni Malinen b11fa98bcb Add explicit checks for peer's DH public key 
Pass the group order (if known/specified) to crypto_dh_derive_secret()
(and also to OpenSSL DH_generate_key() in case of Group 5) and verify
that the public key received from the peer meets 1 < pubkey < p and
pubkey^q == 1 mod p conditions.

While all these use cases were using only ephemeral DH keys, it is
better to use more explicit checks while deriving the shared secret to
avoid unexpected behavior.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
 2019-03-05 17:05:03 +02:00
Jouni Malinen 0e02f2a9fa crypto: Implement new crypto API functions for DH 
This implements crypto_dh_init() and crypto_dh_derive_secret() using
os_get_random() and crypto_mod_exp() for all crypto_*.c wrappers that
include crypto_mod_exp() implementation.

Signed-off-by: Jouni Malinen <j@w1.fi>
 2017-12-24 17:36:04 +02:00
Jouni Malinen 0f3d578efc Remove the GPL notification from files contributed by Jouni Malinen 
Remove the GPL notification text from the files that were
initially contributed by myself.

Signed-hostap: Jouni Malinen <j@w1.fi>
 2012-02-11 19:39:36 +02:00
Jouni Malinen be473f3f09 Split crypto_internal.c into parts to clean up build 
This makes it easier to make src/libcrypto.a and only link in
code that is really used.
 2009-12-06 14:37:46 +02:00