Date: Sat, 31 Oct 2020 22:56:44 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 250767] security/p5-Crypt-OpenSSL-ECDSA signature initialisation fails with OpenSSL 1.1 Message-ID: <bug-250767-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D250767 Bug ID: 250767 Summary: security/p5-Crypt-OpenSSL-ECDSA signature initialisation fails with OpenSSL 1.1 Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: perl@FreeBSD.org Reporter: freebsd.68fba@nospam.spacesurfer.com Assignee: perl@FreeBSD.org Flags: maintainer-feedback?(perl@FreeBSD.org) Running the perl code: use Crypt::OpenSSL::Bignum; use Crypt::OpenSSL::ECDSA; my $num =3D Crypt::OpenSSL::Bignum->new_from_word( 1000 ); my $dsasig =3D Crypt::OpenSSL::ECDSA::ECDSA_SIG->new(); $dsasig->set_r($num); $dsasig->set_s($num); 1; Fails with=20 Could not duplicate unchanged ECDSA paramater when the port is compiled with openssl-1.1.1h_1,1 (probably all versions a= fter openssl 1.1) Looking at the code in=20 ./work/Crypt-OpenSSL-ECDSA-0.08/ECDSA.xs I can see that the set_r and set_s methods try to duplicate the previously initialised values for s and r respectively in the $dsasig object (ECDSA_SIG structure). However, since openssl 1.1 the ECDSA_SIG_new() method no longer initialises the r and s components (see man ECDSA_SIG_get0) --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-250767-7788>