Add SM2 private key range validation

According to the relevant standards, the valid range for SM2 private keys is [1, n-1), where n is the order of the curve generator. For this reason we cannot reuse the EC validation function as it is, and we introduce a new internal function `sm2_key_private_check()`. Partially fixes https://github.com/openssl/openssl/issues/8435 Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/13359)
author: Nicola Tuveri <nic.tuv@gmail.com> 2020-11-10 01:11:48 +0200
committer: Nicola Tuveri <nic.tuv@gmail.com> 2021-01-08 23:59:02 +0200
commit: 9e49aff2aaac4c42ea6c4078266947c75761276b (patch)
tree: 10b470a0ce3fcbc13bb26290003f10f0d5c60116 /crypto/err
parent: 4554988e582e676a51c451de031939b45e60d00c (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/crypto/err/openssl.txt b/crypto/err/openssl.txt
index 5440e47093..4e36fc3394 100644
--- a/crypto/err/openssl.txt
+++ b/crypto/err/openssl.txt
@@ -3103,6 +3103,7 @@ SM2_R_INVALID_DIGEST:102:invalid digest
 SM2_R_INVALID_DIGEST_TYPE:103:invalid digest type
 SM2_R_INVALID_ENCODING:104:invalid encoding
 SM2_R_INVALID_FIELD:105:invalid field
+SM2_R_INVALID_PRIVATE_KEY:113:invalid private key
 SM2_R_NO_PARAMETERS_SET:109:no parameters set
 SM2_R_USER_ID_TOO_LARGE:106:user id too large
 SSL_R_ALGORITHM_FETCH_FAILED:295:algorithm fetch failed
author	Nicola Tuveri <nic.tuv@gmail.com>	2020-11-10 01:11:48 +0200
committer	Nicola Tuveri <nic.tuv@gmail.com>	2021-01-08 23:59:02 +0200
commit	9e49aff2aaac4c42ea6c4078266947c75761276b (patch)
tree	10b470a0ce3fcbc13bb26290003f10f0d5c60116 /crypto/err
parent	4554988e582e676a51c451de031939b45e60d00c (diff)