Adjust EVP_PKEY_CTRL_HKDF_KEY to OpenSSL's semantics - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	tb <>	2023-06-26 08:57:17 +0000
committer	tb <>	2023-06-26 08:57:17 +0000
commit	f45c5c5b98a2815b6102dac200d0a9880ba26676 (patch)
tree	1f9aeffc6ddfee06361ae9af06c8aa5748ef2339 /src/lib/libcrypto/kdf/kdf_err.c
parent	50e301394b7da25716a4dd5743629fe819965477 (diff)
download	openbsd-f45c5c5b98a2815b6102dac200d0a9880ba26676.tar.gz openbsd-f45c5c5b98a2815b6102dac200d0a9880ba26676.tar.bz2 openbsd-f45c5c5b98a2815b6102dac200d0a9880ba26676.zip

Adjust EVP_PKEY_CTRL_HKDF_KEY to OpenSSL's semantics

For some reason there is no NULL check on setting the HKDF key for p2 like in the other cases in the switch, instead OpenSSL fail in memdup, nulling out the key but leaving he key_len at the old value. This looks accidental but our behavior makes some haproxy regress tests segfault. So mimic weird OpenSSL semantics but in addition set the key_len to 0. Reported by Ilya Shipitsin ok jsing

Diffstat (limited to 'src/lib/libcrypto/kdf/kdf_err.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: