[openssl/openssl] 8a4c3e: evp_test: Try computing MACs twice with reinitiali...
Tomas Mraz
noreply at reply.github.openssl.org
Tue Apr 19 12:07:31 UTC 2022
Branch: refs/heads/openssl-3.0
Home: https://github.openssl.org/openssl/openssl
Commit: 8a4c3ed751cf256a0702fa87417e4bbf429c4562
https://github.openssl.org/openssl/openssl/commit/8a4c3ed751cf256a0702fa87417e4bbf429c4562
Author: Tomas Mraz <tomas at openssl.org>
Date: 2022-04-19 (Tue, 19 Apr 2022)
Changed paths:
M test/evp_test.c
M test/recipes/30-test_evp_data/evpmac_poly1305.txt
Log Message:
-----------
evp_test: Try computing MACs twice with reinitialization of EVP_MAC_CTX
Reviewed-by: Matt Caswell <matt at openssl.org>
Reviewed-by: Paul Dale <pauli at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18100)
(cherry picked from commit e58ba181de6b0dfad0dc371f8d962c82138a906e)
Commit: 4f675d8c600bfde652aff28cb10c2d16be11fa65
https://github.openssl.org/openssl/openssl/commit/4f675d8c600bfde652aff28cb10c2d16be11fa65
Author: Tomas Mraz <tomas at openssl.org>
Date: 2022-04-19 (Tue, 19 Apr 2022)
Changed paths:
M providers/implementations/macs/cmac_prov.c
M providers/implementations/macs/gmac_prov.c
M providers/implementations/macs/hmac_prov.c
M providers/implementations/macs/poly1305_prov.c
M providers/implementations/macs/siphash_prov.c
Log Message:
-----------
Avoid undefined behavior of provided macs on EVP_MAC reinitialization
When the context is reinitialized, i.e. the same key should be used
we must properly reinitialize the underlying implementation.
However in POLY1305 case it does not make sense as this special MAC
should not reuse keys. We fail with this provided implementation
when reinitialization happens.
Fixes #17811
Reviewed-by: Matt Caswell <matt at openssl.org>
Reviewed-by: Paul Dale <pauli at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18100)
(cherry picked from commit c9ddc5af5199909d196ee80ccd7abcff2eb42a34)
Compare: https://github.openssl.org/openssl/openssl/compare/279e66f76ac3...4f675d8c600b
More information about the openssl-commits
mailing list