openbsd/src/lib/libcrypto/kdf, branch libressl-v3.8.2 A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=libressl-v3.8.2 2023-06-26T08:57:17+00:00 Adjust EVP_PKEY_CTRL_HKDF_KEY to OpenSSL's semantics 2023-06-26T08:57:17+00:00 tb 2023-06-26T08:57:17+00:00 urn:sha1:36dc6e3bd638a341fcee604245bf23d1c02bfd13 For some reason there is no NULL check on setting the HKDF key for p2 like in the other cases in the switch, instead OpenSSL fail in memdup, nulling out the key but leaving he key_len at the old value. This looks accidental but our behavior makes some haproxy regress tests segfault. So mimic weird OpenSSL semantics but in addition set the key_len to 0. Reported by Ilya Shipitsin ok jsing Make internal header file names consistent 2022-11-26T16:08:57+00:00 tb 2022-11-26T16:08:57+00:00 urn:sha1:81d98bf600a381a625eb11b39a725b08c0ba547f Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names used for internal headers. Move all these headers we inherited from OpenSSL to *_local.h, reserving the name *_internal.h for our own code. Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h. constant_time_locl.h is moved to constant_time.h since it's special. Adjust all .c files in libcrypto, libssl and regress. The diff is mechanical with the exception of tls13_quic.c, where #include <ssl_locl.h> was fixed manually. discussed with jsing, no objection bcook Remove mkerr.pl remnants from LibreSSL 2022-07-12T14:42:50+00:00 kn 2022-07-12T14:42:50+00:00 urn:sha1:89e42d5857196a8071fbafb5565388d0e20ec32b This script is not used at all and files are edited by hand instead. Thus remove misleading comments incl. the obsolete script/config. Feedback OK jsing tb Simplify: freezero() is NULL safe; assign + test in one go, as usual. 2022-05-05T19:48:06+00:00 tb 2022-05-05T19:48:06+00:00 urn:sha1:d072cbaedff238f7a1e016236e14e0e7313fef3d ok jsing Avoid malloc(0) in EVP_PKEY_CTX_set1_hkdf_key() 2022-05-05T19:46:36+00:00 tb 2022-05-05T19:46:36+00:00 urn:sha1:0338871aa5eff66214a0f284df81dfe5baafad7f ok jsing Securely wipe the entire HKDF_PKEY_CTX instead of only taking care of 2022-05-05T19:44:23+00:00 tb 2022-05-05T19:44:23+00:00 urn:sha1:a84cfd259de5c815a6c6d613e60253d77508a3c1 a piece of the embedded info array. ok jsing Fix argument order in HKDF and HKDF_extract(). 2022-05-05T11:26:36+00:00 tb 2022-05-05T11:26:36+00:00 urn:sha1:14561e7c4537eee9ff1f86cc079c74e822b7b9e0 Ditch #defines for tls1_prf and scrypt. Drop unused errors and massage 2022-05-05T08:24:14+00:00 tb 2022-05-05T08:24:14+00:00 urn:sha1:9fb9c008e59eafd70dee8f62f3dea62ea928fa06 some const. ok beck jsing Translate from OpenSSL's HKDF API to BoringSSL API. 2022-05-05T08:14:14+00:00 tb 2022-05-05T08:14:14+00:00 urn:sha1:149b492e15288179d8f101949dca107977777b6b ok beck jsing Remove function codes from errors, i.e., KDFerr(A, B) -> KDFerror(B) 2022-05-05T08:10:39+00:00 tb 2022-05-05T08:10:39+00:00 urn:sha1:ac804b13a0170f8d542def4ecbb8e895200eafbd ok beck jsing