[openssl-dev] [openssl.org #4267] Missing accessor to the EVP_CIPHER_CTX member oiv

Richard Levitte via RT rt at openssl.org
Wed Feb 17 09:42:16 UTC 2016


Hi,

I'm sorry, the oiv field is EVP private. Sure, it's been accessible (and
thoroughly misused in some cases) when EVP_CIPHER_CTX was open, but in essence,
it's a EVP private store of the IV that was given at EVP_CipherInit().

If you want to retain a copy of the original IV, I suggest you have one in
GOSTs structure and take a copy of the IV given to the init() function.

Thank you for the reminder, I meant to deal with this further. oiv should
really not be publically accessible at all, not even as a constant.

Cheers,
Richard

Vid Sat, 23 Jan 2016 kl. 09.40.19, skrev beldmit at gmail.com:
> Hello,
>
> After making the EVP_CIPHER_CTX struct opaque I found that there is a
> missing non-const accessor to the oiv member. It is used in GOST engine
> when we set the cipher parameters from the ASN1 parameters.
>
> Thank you!
>


--
Richard Levitte
levitte at openssl.org

-- 
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4267
Please log in as guest with password guest if prompted



More information about the openssl-dev mailing list