Add FIPS-compliant key generation that calls check_fips for RSA and EC. Change-Id: Ie466b7b55bdd679c5baf2127bd8de4a5058fc3b7 Reviewed-on: https://boringssl-review.googlesource.com/16346 Commit-Queue: Steven Valdez <svaldez@google.com> Reviewed-by: Steven Valdez <svaldez@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

commit: 467d3220f86c2fd26107783f1e3762ba5ecad9da [log] [tgz]
author: Steven Valdez <svaldez@google.com> Tue May 16 14:35:22 2017 -0400
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Wed May 17 16:30:48 2017 +0000
tree: a4638dd21dfa8ca213d8e9619baf3805e641d58a
parent: 1ac4f16fe99b6ded2415faf773bdd970561c4809 [diff] [blame]
diff --git a/include/openssl/ec_key.h b/include/openssl/ec_key.h
index cb7ef10..2186f02 100644
--- a/include/openssl/ec_key.h
+++ b/include/openssl/ec_key.h

@@ -177,6 +177,10 @@
  * or zero otherwise. */
 OPENSSL_EXPORT int EC_KEY_generate_key(EC_KEY *key);
 
+/* EC_KEY_generate_key_fips behaves like |EC_KEY_generate_key| but performs
+ * additional checks for FIPS compliance. */
+OPENSSL_EXPORT int EC_KEY_generate_key_fips(EC_KEY *key);
+
 
 /* Serialisation. */
commit	467d3220f86c2fd26107783f1e3762ba5ecad9da	[log] [tgz]
author	Steven Valdez <svaldez@google.com>	Tue May 16 14:35:22 2017 -0400
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Wed May 17 16:30:48 2017 +0000
tree	a4638dd21dfa8ca213d8e9619baf3805e641d58a
parent	1ac4f16fe99b6ded2415faf773bdd970561c4809 [diff] [blame]