larabr 7a257d563d Detect invalid PKESK public point encoding on decryption ...

We got a report of a message including a PKESK packet where
the ECDH x25519Legacy point was missing the leading byte (0x40).
While decryption naturally would naturally fail afterwards, this
change ensures we fail at a higher level, and do not blindly pass
down invalid data to the low-level crypto functions.

2024-05-16 16:12:35 +02:00

..

cipher

Drop internal cipher/aes module

2024-02-27 14:43:24 +01:00

hash

Add SHA-3 signature support (#1680)

2023-10-25 12:53:12 +02:00

aes_kw.js

Use WebCrypto for AES-KW

2024-02-27 14:43:24 +01:00

biginteger.js

Drop BigInteger class, use standalone helpers

2024-05-16 13:59:11 +02:00

brainpool_rfc7027.js

Move Brainpool curves implementation from noble-curves fork

2024-05-16 13:59:11 +02:00

crypto.js

Import legacy ciphers (CAST5, TwoFish, BlowFish, DES) only on demand (#1723)

2024-02-26 15:37:50 +01:00

eax.js

Tests: update sinon

2023-10-25 12:53:11 +02:00

ecdh.js

Detect invalid PKESK public point encoding on decryption

2024-05-16 16:12:35 +02:00

elliptic_data.js

enums.curve: rename NIST curves (p256,p384,p521`) and clean up unused internal values (#1721)

2024-02-02 12:54:24 +01:00

elliptic.js

enums.curve: rename NIST curves (p256,p384,p521`) and clean up unused internal values (#1721)

2024-02-02 12:54:24 +01:00

gcm.js

Tests: update sinon

2023-10-25 12:53:11 +02:00

hkdf.js

Update to Mocha v10 in tests, declare lib as module and add exports to package.json

2023-10-25 12:53:10 +02:00

index.js

Drop BigInteger class, use standalone helpers

2024-05-16 13:59:11 +02:00

ocb.js

Tests: explicitly share openpgp instance used in tests

2023-10-25 12:53:10 +02:00

pkcs5.js

Update to Mocha v10 in tests, declare lib as module and add exports to package.json

2023-10-25 12:53:10 +02:00

rsa.js

Tests: update sinon

2023-10-25 12:53:11 +02:00

validate.js

Drop BigInteger class, use standalone helpers

2024-05-16 13:59:11 +02:00