[openssl/openssl] c5cc22: Issue 22076 - Fix regressions in dupctx testing (#...

Neil Horman noreply at github.com
Wed Sep 13 17:17:17 UTC 2023

  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: c5cc22270b595eb9058350c0ec6a0abd2b5c76e2
  Author: Neil Horman <nhorman at openssl.org>
  Date:   2023-09-13 (Wed, 13 Sep 2023)

  Changed paths:
    M providers/implementations/ciphers/cipher_aes_gcm.c
    M providers/implementations/ciphers/cipher_aria_ccm.c
    M providers/implementations/ciphers/cipher_aria_gcm.c
    M providers/implementations/ciphers/cipher_sm4_ccm.c
    M providers/implementations/ciphers/cipher_sm4_gcm.c
    M test/evp_test.c

  Log Message:
  Issue 22076 - Fix regressions in dupctx testing (#22082)

* Fix regression in evp_test for provider compat CI

If we ignore the faliure to copy on an old fips provider, we need to use
ctx_base, rather than ctx

Fixes #22076

* Fix a key repointing in various ciphers

In the dupctx fixups I missed a pointer that needed to be repointed to
the surrounding structures AES_KEY structure for the sm4/aes/aria
ccm/gcm variants.  This caused a colliding use of the key and possible
use after free issues.

Fixes #22076

More information about the openssl-commits mailing list