]> git.ipfire.org Git - thirdparty/openssl.git/commitdiff
projects / thirdparty / openssl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 409910b)
Make the provider side EVP PKEY MAC bridge available in default and fips
authorMatt Caswell <matt@openssl.org>
Fri, 7 Aug 2020 15:55:42 +0000 (16:55 +0100)
committerPauli <paul.dale@oracle.com>
Sat, 29 Aug 2020 07:39:37 +0000 (17:39 +1000)
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/12637)

crypto/evp/pmeth_lib.c patch | blob | blame | history
providers/defltprov.c patch | blob | blame | history
providers/fips/fipsprov.c patch | blob | blame | history

diff --git a/crypto/evp/pmeth_lib.c b/crypto/evp/pmeth_lib.c
index 7fd5339537b1b659cc2c66eb568030e8777f7d7a..efec516ac233a2a3c5f17e70567b78bf132dd738 100644 (file)
--- a/crypto/evp/pmeth_lib.c
+++ b/crypto/evp/pmeth_lib.c
@@ -151,7 +151,6 @@ static int is_legacy_alg(int id, const char *keytype)
      */
     case EVP_PKEY_SM2:
     case EVP_PKEY_CMAC:
-    case EVP_PKEY_HMAC:
     case EVP_PKEY_SIPHASH:
     case EVP_PKEY_POLY1305:
         return 1;
diff --git a/providers/defltprov.c b/providers/defltprov.c
index 9aefa801a170080b32107c9069b08bbbc011b794..c5b3407894a2c33788e3976e292ed6c663635d91 100644 (file)
--- a/providers/defltprov.c
+++ b/providers/defltprov.c
@@ -364,6 +364,7 @@ static const OSSL_ALGORITHM deflt_signature[] = {
     { "ED448:Ed448", "provider=default", ed448_signature_functions },
     { "ECDSA", "provider=default", ecdsa_signature_functions },
 #endif
+    { "HMAC", "provider=default", mac_hmac_signature_functions },
     { NULL, NULL, NULL }
 };
 
@@ -392,6 +393,7 @@ static const OSSL_ALGORITHM deflt_keymgmt[] = {
     { "TLS1-PRF", "provider=default", kdf_keymgmt_functions },
     { "HKDF", "provider=default", kdf_keymgmt_functions },
     { "SCRYPT:id-scrypt", "provider=default", kdf_keymgmt_functions },
+    { "HMAC", "provider=default", mac_keymgmt_functions },
     { NULL, NULL, NULL }
 };
 
diff --git a/providers/fips/fipsprov.c b/providers/fips/fipsprov.c
index b29cae509c0ae8a1b9d1444049d68265a85e58bc..745d5320ba6805d4174ec19744382175efbef1e8 100644 (file)
--- a/providers/fips/fipsprov.c
+++ b/providers/fips/fipsprov.c
@@ -436,6 +436,7 @@ static const OSSL_ALGORITHM fips_signature[] = {
     { "ED448", FIPS_DEFAULT_PROPERTIES, ed448_signature_functions },
     { "ECDSA", FIPS_DEFAULT_PROPERTIES, ecdsa_signature_functions },
 #endif
+    { "HMAC", FIPS_DEFAULT_PROPERTIES, mac_hmac_signature_functions },
     { NULL, NULL, NULL }
 };
 
@@ -464,6 +465,7 @@ static const OSSL_ALGORITHM fips_keymgmt[] = {
 #endif
     { "TLS1-PRF", FIPS_DEFAULT_PROPERTIES, kdf_keymgmt_functions },
     { "HKDF", FIPS_DEFAULT_PROPERTIES, kdf_keymgmt_functions },
+    { "HMAC", FIPS_DEFAULT_PROPERTIES, mac_keymgmt_functions },
     { NULL, NULL, NULL }
 };
 
A mirror of the official openssl repository