Don't forget our provider ctx when resetting

author Matt Caswell <matt@openssl.org>

Mon, 22 Jun 2020 10:18:56 +0000 (11:18 +0100)

committer Matt Caswell <matt@openssl.org>

Wed, 1 Jul 2020 10:31:45 +0000 (11:31 +0100)
author Matt Caswell <matt@openssl.org>
Mon, 22 Jun 2020 10:18:56 +0000 (11:18 +0100)
committer Matt Caswell <matt@openssl.org>
Wed, 1 Jul 2020 10:31:45 +0000 (11:31 +0100)
diff --git a/providers/implementations/kdfs/hkdf.c b/providers/implementations/kdfs/hkdf.c

index 77f4f2c8ccd18776ae5e60647bb6b57d66c31fb0..0b1a6e9b7ebc718e4b67bdddd7515dd1ec4aad0d 100644 (file)
--- a/providers/implementations/kdfs/hkdf.c
+++ b/providers/implementations/kdfs/hkdf.c
@@ -90,12 +90,14 @@ static void kdf_hkdf_free(void *vctx)
  static void kdf_hkdf_reset(void *vctx)
  {
      KDF_HKDF *ctx = (KDF_HKDF *)vctx;
+    void *provctx = ctx->provctx;
  
      ossl_prov_digest_reset(&ctx->digest);
      OPENSSL_free(ctx->salt);
      OPENSSL_clear_free(ctx->key, ctx->key_len);
      OPENSSL_cleanse(ctx->info, ctx->info_len);
      memset(ctx, 0, sizeof(*ctx));
+    ctx->provctx = provctx;
  }
  
  static size_t kdf_hkdf_size(KDF_HKDF *ctx)
diff --git a/providers/implementations/kdfs/kbkdf.c b/providers/implementations/kdfs/kbkdf.c

index 920f0d9af3c1afd7ed52a1e906fbe29b1585269a..f3f3d9a609e8afd0a003f2d9607285709e66b23b 100644 (file)
--- a/providers/implementations/kdfs/kbkdf.c
+++ b/providers/implementations/kdfs/kbkdf.c
@@ -122,6 +122,7 @@ static void kbkdf_free(void *vctx)
  static void kbkdf_reset(void *vctx)
  {
      KBKDF *ctx = (KBKDF *)vctx;
+    void *provctx = ctx->provctx;
  
      EVP_MAC_free_ctx(ctx->ctx_init);
      OPENSSL_clear_free(ctx->context, ctx->context_len);
@@ -129,6 +130,7 @@ static void kbkdf_reset(void *vctx)
      OPENSSL_clear_free(ctx->ki, ctx->ki_len);
      OPENSSL_clear_free(ctx->iv, ctx->iv_len);
      memset(ctx, 0, sizeof(*ctx));
+    ctx->provctx = provctx;
  }
  
  /* SP800-108 section 5.1 or section 5.2 depending on mode. */
diff --git a/providers/implementations/kdfs/krb5kdf.c b/providers/implementations/kdfs/krb5kdf.c

index 4ae29a24c4c20fd01e8659cfebed39a1ae74f531..25462f3c1da219276b0ea0dfda7e8b0e45d2b76d 100644 (file)
--- a/providers/implementations/kdfs/krb5kdf.c
+++ b/providers/implementations/kdfs/krb5kdf.c
@@ -78,11 +78,13 @@ static void krb5kdf_free(void *vctx)
  static void krb5kdf_reset(void *vctx)
  {
      KRB5KDF_CTX *ctx = (KRB5KDF_CTX *)vctx;
+    void *provctx = ctx->provctx;
  
      ossl_prov_cipher_reset(&ctx->cipher);
      OPENSSL_clear_free(ctx->key, ctx->key_len);
      OPENSSL_clear_free(ctx->constant, ctx->constant_len);
      memset(ctx, 0, sizeof(*ctx));
+    ctx->provctx = provctx;
  }
  
  static int krb5kdf_set_membuf(unsigned char **dst, size_t *dst_len,
diff --git a/providers/implementations/kdfs/pbkdf2.c b/providers/implementations/kdfs/pbkdf2.c

index 6ac078309645c9b7b4ed136cecc4c81f1e797a91..e6956fe1552adc324133dec49603d303c019b1a8 100644 (file)
--- a/providers/implementations/kdfs/pbkdf2.c
+++ b/providers/implementations/kdfs/pbkdf2.c
@@ -95,8 +95,10 @@ static void kdf_pbkdf2_free(void *vctx)
  static void kdf_pbkdf2_reset(void *vctx)
  {
      KDF_PBKDF2 *ctx = (KDF_PBKDF2 *)vctx;
+    void *provctx = ctx->provctx;
  
      kdf_pbkdf2_cleanup(ctx);
+    ctx->provctx = provctx;
      kdf_pbkdf2_init(ctx);
  }
  
diff --git a/providers/implementations/kdfs/sshkdf.c b/providers/implementations/kdfs/sshkdf.c

index 137299235a1cb927d7de0a7c7148a8f590eecfd6..72d7c607dc50423a113eaf74a2e5a8acc849938e 100644 (file)
--- a/providers/implementations/kdfs/sshkdf.c
+++ b/providers/implementations/kdfs/sshkdf.c
@@ -72,12 +72,14 @@ static void kdf_sshkdf_free(void *vctx)
  static void kdf_sshkdf_reset(void *vctx)
  {
      KDF_SSHKDF *ctx = (KDF_SSHKDF *)vctx;
+    void *provctx = ctx->provctx;
  
      ossl_prov_digest_reset(&ctx->digest);
      OPENSSL_clear_free(ctx->key, ctx->key_len);
      OPENSSL_clear_free(ctx->xcghash, ctx->xcghash_len);
      OPENSSL_clear_free(ctx->session_id, ctx->session_id_len);
      memset(ctx, 0, sizeof(*ctx));
+    ctx->provctx = provctx;
  }
  
  static int sshkdf_set_membuf(unsigned char **dst, size_t *dst_len,
diff --git a/providers/implementations/kdfs/sskdf.c b/providers/implementations/kdfs/sskdf.c

index 48a9e433d816a6c816a8385d09fad79f14cf20a9..6d6e3295c8b11b7cbce8b16ea1baa659e56d55a9 100644 (file)
--- a/providers/implementations/kdfs/sskdf.c
+++ b/providers/implementations/kdfs/sskdf.c
@@ -302,6 +302,7 @@ static void *sskdf_new(void *provctx)
  static void sskdf_reset(void *vctx)
  {
      KDF_SSKDF *ctx = (KDF_SSKDF *)vctx;
+    void *provctx = ctx->provctx;
  
      EVP_MAC_free_ctx(ctx->macctx);
      ossl_prov_digest_reset(&ctx->digest);
@@ -309,6 +310,7 @@ static void sskdf_reset(void *vctx)
      OPENSSL_clear_free(ctx->info, ctx->info_len);
      OPENSSL_clear_free(ctx->salt, ctx->salt_len);
      memset(ctx, 0, sizeof(*ctx));
+    ctx->provctx = provctx;
  }
  
  static void sskdf_free(void *vctx)
diff --git a/providers/implementations/kdfs/tls1_prf.c b/providers/implementations/kdfs/tls1_prf.c

index 5cbe3b8175c7ac523642735618f2a192a8fca947..d90a1bd0727c8ff4b7c1f7cc85fe651c9e76203f 100644 (file)
--- a/providers/implementations/kdfs/tls1_prf.c
+++ b/providers/implementations/kdfs/tls1_prf.c
@@ -115,12 +115,14 @@ static void kdf_tls1_prf_free(void *vctx)
  static void kdf_tls1_prf_reset(void *vctx)
  {
      TLS1_PRF *ctx = (TLS1_PRF *)vctx;
+    void *provctx = ctx->provctx;
  
      EVP_MAC_free_ctx(ctx->P_hash);
      EVP_MAC_free_ctx(ctx->P_sha1);
      OPENSSL_clear_free(ctx->sec, ctx->seclen);
      OPENSSL_cleanse(ctx->seed, ctx->seedlen);
      memset(ctx, 0, sizeof(*ctx));
+    ctx->provctx = provctx;
  }
  
  static int kdf_tls1_prf_derive(void *vctx, unsigned char *key,
diff --git a/providers/implementations/kdfs/x942kdf.c b/providers/implementations/kdfs/x942kdf.c

index 6def5d218dc4b0ddb571ae74102a485ee3e175dc..be141c0d88fd09895bbb3728b10296a3cbcda2c1 100644 (file)
--- a/providers/implementations/kdfs/x942kdf.c
+++ b/providers/implementations/kdfs/x942kdf.c
@@ -255,11 +255,13 @@ static void *x942kdf_new(void *provctx)
  static void x942kdf_reset(void *vctx)
  {
      KDF_X942 *ctx = (KDF_X942 *)vctx;
+    void *provctx = ctx->provctx;
  
      ossl_prov_digest_reset(&ctx->digest);
      OPENSSL_clear_free(ctx->secret, ctx->secret_len);
      OPENSSL_clear_free(ctx->ukm, ctx->ukm_len);
      memset(ctx, 0, sizeof(*ctx));
+    ctx->provctx = provctx;
  }
  
  static void x942kdf_free(void *vctx)
author	Matt Caswell <matt@openssl.org>
	Mon, 22 Jun 2020 10:18:56 +0000 (11:18 +0100)
committer	Matt Caswell <matt@openssl.org>
	Wed, 1 Jul 2020 10:31:45 +0000 (11:31 +0100)
providers/implementations/kdfs/hkdf.c		patch \| blob \| blame \| history
providers/implementations/kdfs/kbkdf.c		patch \| blob \| blame \| history
providers/implementations/kdfs/krb5kdf.c		patch \| blob \| blame \| history
providers/implementations/kdfs/pbkdf2.c		patch \| blob \| blame \| history
providers/implementations/kdfs/sshkdf.c		patch \| blob \| blame \| history
providers/implementations/kdfs/sskdf.c		patch \| blob \| blame \| history
providers/implementations/kdfs/tls1_prf.c		patch \| blob \| blame \| history
providers/implementations/kdfs/x942kdf.c		patch \| blob \| blame \| history