diff options
| author | tb <> | 2025-06-06 07:41:01 +0000 | 
|---|---|---|
| committer | tb <> | 2025-06-06 07:41:01 +0000 | 
| commit | 0056ad753239eb1ecb336078f131548454ccebdc (patch) | |
| tree | 8fefb7b54a21ac65b877a6d1bcf8b9221365ffb0 /src/lib/libc/stdlib/random.c | |
| parent | fdfd3dad8e21a95f3e542d8d9648bc3c1eb4d5d3 (diff) | |
| download | openbsd-0056ad753239eb1ecb336078f131548454ccebdc.tar.gz openbsd-0056ad753239eb1ecb336078f131548454ccebdc.tar.bz2 openbsd-0056ad753239eb1ecb336078f131548454ccebdc.zip | |
Fix EVP_DecryptFinal() for CCM ciphers
There is an old trap that you must not call EVP_*Final() when
using AES-CCM. While encrypting this happens to be a noop and
succeeds, but when decrypting, the call fails. This behavior
changed in OpenSSL and BoringSSL, making the trap even worse
since we now fail when the others succeed.
This is an adaptation of OpenSSL commit 197421b1 to fix this.
See also https://github.com/sfackler/rust-openssl/pull/1805#issuecomment-2734788336
ok beck kenjiro
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions
