diff options
| author | slontis <shane.lontis@oracle.com> | 2022-07-15 21:22:01 +1000 |
|---|---|---|
| committer | Hugo Landau <hlandau@openssl.org> | 2022-11-30 07:31:53 +0000 |
| commit | f3090fc710e30a749acaf9e5dfbe20dd163cf15d (patch) | |
| tree | 720d4b3cada6e81a69a2b2b68f6e8cf592c3e003 /providers/defltprov.c | |
| parent | 9ba4f489ecd30901603d66a8ec578cbca08fac06 (diff) | |
Implement deterministic ECDSA sign (RFC6979)
This PR is based off the contributions in PR #9223 by Jemmy1228.
It has been modified and reworked to:
(1) Work with providers
(2) Support ECDSA and DSA
(3) Add a KDF HMAC_DRBG implementation that shares code with the RAND HMAC_DRBG.
A nonce_type is passed around inside the Signing API's, in order to support any
future deterministic algorithms.
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Hugo Landau <hlandau@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18809)
Diffstat (limited to 'providers/defltprov.c')
| -rw-r--r-- | providers/defltprov.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/providers/defltprov.c b/providers/defltprov.c index 4ce7e3ed62..cbb7a99ad1 100644 --- a/providers/defltprov.c +++ b/providers/defltprov.c @@ -353,6 +353,8 @@ static const OSSL_ALGORITHM deflt_kdfs[] = { { PROV_NAMES_SCRYPT, "provider=default", ossl_kdf_scrypt_functions }, #endif { PROV_NAMES_KRB5KDF, "provider=default", ossl_kdf_krb5kdf_functions }, + { PROV_NAMES_HMAC_DRBG_KDF, "provider=default", + ossl_kdf_hmac_drbg_functions }, { NULL, NULL, NULL } }; |